In 2003, Tom Walsh founded Tom Walsh Consulting, LLC with the goal of providing a reasonable, practical approach to information security, adhering to the highest ethical standards of behavior - the code of ethics for a CISSP which include acting honorably, honestly, justly, responsibly, and legally.
In 2013, Tom Walsh Consulting became tw-Security, LLC leveraging Tom's reasonable practical approach of tried and tested methods and tools.
Today, tw-Security, a nationally recognized healthcare information security firm with expert consultants has served >150 healthcare customers to help develop and maintain a HIPAA compliant information security program. Our long-term customer relationships are built on trust, respect, and the delivery of services with concern for budget limitations.
Our Approach to Information Security Services is based on:
- Experience with the HIPAA Privacy and Security Rules, and Breach Notification Requirements
- Criteria included in the HIPAA Audit Program Protocol used by HHS Office for Civil Rights (OCR)
- Guidance from the National Institute of Standards and Technology (NIST)
- Documents created by the Department of Health and Human Services (HHS) and the Centers for Medicare and Medicaid (CMS)
Our 'deliverable-oriented services' are provided at an affordable rate as compared with a larger consulting firm with equivalent experience, skills, and credentials. For our breath of information security services, KLAS Enterprises, LLC, acknowledged tw -Security as a “Boutique Firm” in the report ‘Security and Privacy Perception 2014: High Stakes, Big Challenges, May 2014’, All rights reserved. www.KLASresearch.com.
Certified Professionals and Thought Leaders
Our certified professionals - experienced in healthcare information security and risk management have 25+ years combined experience in information security and management. All of tw-Security’s consultant leadership has served as an Information Security Officer or interim or virtual ISO for a large healthcare system.
Our thought leaders are frequently requested to offer their perspective, insights, and observations on "top of mind" 'information security news'. They contribute to professional organizations, such as, Healthcare Information and Management Systems Society (HIMSS), the American Health Information Management Association (AHIMA), the International Information System Security Certification Consortium, (ISC)², and the International Association of Forensic Nursing (IAFN) promoting information security awareness, training and education.