Major US Health Insurance Organization streamlines SOC2 compliance with ServiceNow
Security & RiskSuccess StoryInsurance

Major US Health Insurance Organization streamlines SOC2 compliance with ServiceNow

Major US Health Insurance Organization streamlines SOC2 compliance with ServiceNow

Automation of controls with control instances, policy exceptions, and more.


As a major health insurance organization in the US, the client needed comply with various regulations including SOC2. They had a well-defined but entirely spreadsheet-driven SOC2 assessment process. This led to long cycles of preparation for SOC2 certifications. They needed a way to automate their compliance cycle from releasing assessments to finalizing evidence.

INRY’s implementation of ServiceNow Policy and Compliance Management helped the client move to a more streamlined process to track compliance with SOC2 assessments.

Casey’s HRIS team saves a ton of time and effort through better quality of requests-04 49 controls with 193 control instances were automated and the burden of managing compliance against those was reduced significantly
Major US Health Insurance Organization streamlines SOC2 compliance with ServiceNow-02 Automatic requests for evidence sent at periodic intervals eliminated the need for the Information Security team to send hundreds of emails
Casey’s gets Facilities requests fulfilled much faster and more efficiently with ServiceNow-03 104 Policy Exceptions were automated and a completely new workflow and request process was created and centralized within ServiceNow
Major US Health Insurance Organization streamlines SOC2 compliance with ServiceNow-04 Real-time dashboards provided operational insight and increased visibility into the number of assessments in progress and their status
Related Insights