The week in health tech, explained in plain English.Get the free newsletter →
June 11, 2026

Takeaways from the most recent news in the technology and policies shaping healthcare.

Health IT

SOC 2 and HITRUST Don't Prove Vendor Security Works

By Healthcare Technology News ·

Healthcare buyers lean heavily on a familiar set of credentials when vetting vendors: SOC 2 reports, HITRUST certifications, and signed Business Associate Agreements. A MedCity News opinion piece argues that reliance is misplaced. These documents tell you what a vendor claims about its security controls, not whether those controls are actually working on any given day.

The deeper problem, the piece contends, is structural. The compliance industry profits from producing attestations, so the system optimizes for paperwork that satisfies procurement checklists rather than continuous proof that protections hold. A SOC 2 report captures a moment in time, often months in the past, and says little about the integrity of the evidence behind it. A BAA assigns liability; it does not secure data.

For health IT leaders, the takeaway is to treat certifications as the floor, not the ceiling. That means demanding ongoing visibility into vendor controls, real evidence over self-attestation, and verification that matches the sensitivity of the patient data at stake.

Sources

More in Health IT

Health IT

AI Is Reshaping How Clinical Trial Protocols Get Built

Domain-specific AI trained on real clinical operations data is helping sponsors design smarter, more feasible trial protocols and avoid costly amendments.

Why it matters: Protocol flaws drive expensive delays and amendments, so AI that improves feasibility early can speed drug development and cut trial costs.

Health IT

Sophia Genetics, MSK Plan NYC Precision Oncology Hub

Sophia Genetics and Memorial Sloan Kettering signed an MOU to form a joint venture building an AI-powered precision oncology hub in New York City.

Why it matters: Pairing a leading cancer center's data with AI analytics could accelerate how quickly patients are matched to the right targeted cancer treatments.

Health IT

Klinic Lands $24M for Behavioral Health Provider Platform

Klinic raised $24 million to expand its enablement platform for behavioral health and specialty providers.

Why it matters: Independent behavioral health providers face surging demand and thin administrative support, making operational technology a key lever for expanding access to care.