When ILLUMEN, an information technology service company, was asked by one of their high profile customers to host and manage infrastructure containing electronic Personal Health Information (ePHI), they knew that they would have to implement a robust security and compliance program. While their highly skilled engineers were well equipped to deal with the technical security components of protecting sensitive data, they did not have a good way to manage all the policies and procedures necessary to maintain tough security and compliance. ILLUMEN turned to Ostendio and their cloud based solution - My Virtual Compliance Manager (MyVCM) - for help.