Information Security and Privacy

Medidata’s Information Security and Privacy function, which is part of Medidata’s R&D organization, has regulatory-related responsibilities. It is foundational to all aspects of Medidata’s business and responsible for:

  • Developing and maintaining Information Security and Privacy policies and procedures that address international directives, laws and regulations, such as HIPAA, EU 95/46, PIPA and others
  • Overseeing internal security testing laboratories to investigate “what if” scenarios for Medidata products during product development
  • Managing regular network penetration tests of the Medidata Enterprise Networks
  • Managing penetration tests of Medidata software products
  • Conducting regular internal training on Information Security and Privacy
  • Assuring necessary and sufficient controls exist to provide integrity, confidentiality and availability of client information in a global environment
  • Developing, testing and maintaining the Medidata Business Continuity plans
  • Disseminating information on new Information Security and Privacy regulations, directives and laws
  • Conducting internal investigations of Information Security and Privacy events