Versant Health

Vatica Health is the leading provider-centric risk adjustment and quality of care solution, transforming how healthcare organizations optimize performance through innovative technology and clinical expertise. Founded in 2011, the company serves over 1.7 million patients across 41 states through partnerships with 11,000+ providers and 14 national and regional health plan clients. Vatica Health has earned the prestigious Best in KLAS® award for three consecutive years (2023-2025), recognizing its excellence in risk adjustment software and professional services. The company's unique model pairs expert clinical teams with comprehensive data and intuitive technology at the point of care, enabling healthcare organizations to achieve better financial and clinical outcomes. By capturing more accurate and complete diagnosis codes, Vatica Health helps improve coding accuracy by approximately 10% per patient, close care gaps, enhance compliance, and reduce regulatory risk. The organization has experienced significant growth, including acquisition by Frazier Healthcare Partners in 2023, and continues to expand its market-leading PCP-centric risk adjustment solution that health plans and providers actually use.

Avalere Health is a global strategic partner, perfectly formed to solve the biggest challenges in health - at pace and at scale. Formerly known as Fishawack Health, the company was founded in 2001 and has grown to employ 750 professionals across 14 offices in the US, UK, and India. Guided by a single mission to make EVERY PATIENT POSSIBLE, Avalere Health unites its Advisory, Medical, and Marketing teams to ensure every patient is identified, supported, treated, and cared for - equally. Powered by a proprietary strategic model called SenseMaking, Avalere Health uncovers insights where science, society, and systems intersect. The company builds unconventional solutions that connect across the product lifecycle, bridging the gap between access and innovation. Their clients span life sciences, health plans, healthcare providers, and private equity firms, all working together toward a world where healthcare is not a barrier and no patient is left behind.

At Elevance Health, we believe in transforming healthcare through a whole-health approach that addresses physical, behavioral, and social needs. Our nearly 100,000 associates serve more than 118 million people at every stage of their health journey, guided by our bold purpose to improve the health of humanity. We live by our core values - Community, Diversity, Integrity, Agility, and Leadership - which inspire us to put people first, embrace change, build trust, and lead by example every day. Our culture emphasizes collaboration and continuous learning, fostering an inclusive environment where all associates have the opportunity to succeed. We are evolving from a traditional health benefits organization into a lifetime, trusted health partner, powered by industry-leading capabilities and a digital platform for health. Through our family of companies including Anthem Blue Cross, Carelon, and Wellpoint, we deliver integrated solutions that promote whole health and advance health beyond healthcare for the consumers and communities we serve.

Option Care Health is the nation's largest independent provider of home and alternate site infusion services, transforming healthcare delivery for patients with acute and chronic conditions. With more than 8,000 team members including over 5,000 clinicians serving patients across all 50 states, we deliver high-quality, cost-effective infusion therapies that make a meaningful difference in people's lives every day. Our national network comprises 170+ infusion suite locations, enabling us to provide comprehensive care from IV antibiotics and nutrition support to immunoglobulin and specialized therapies. For over 40 years since our founding in 1979, Option Care Health has been at the forefront of re-imagining the infusion care experience. We partner with pharmaceutical manufacturers, health systems, and every major insurance provider to ensure seamless care coordination and optimal patient outcomes. Our commitment to clinical excellence is demonstrated through industry-leading accreditations from ACHC, ASHP, URAC, and PCAB. As a publicly traded company (Nasdaq: OPCH) recognized with the 2024 Gallup Exceptional Workplace Award, we continue to innovate and expand access to vital infusion therapies while maintaining our core mission of providing extraordinary care that changes lives.

HealthEquity administers Health Savings Accounts and consumer-directed benefits for millions of Americans navigating healthcare finance - a domain where regulatory complexity meets high-stakes personal data. As an IRS-designated non-bank HSA trustee, the company operates at the intersection of financial technology and benefits administration, processing healthcare dollars through systems that must satisfy both HIPAA requirements and financial services compliance. The attack surface spans account management platforms, employer integrations, and financial advisor portals. The technical stack centers on Workday for HR and benefits operations, with Salesforce handling customer relationship management. Security teams work across fintech threat models - account takeover, payment fraud, credential stuffing - layered with healthcare-specific risks around protected health information. The company manages FSAs, HRAs, and COBRA alongside its core HSA product, creating multiple data flows between employers, financial institutions, and individual account holders. Operations run entirely within the United States under federal healthcare and financial regulations. The threat model includes both external attackers targeting financial accounts and insider risk from employees accessing sensitive health and financial data across enterprise clients. Security architecture must account for partner integrations with employers and financial advisors, where weak links in third-party systems can expose HealthEquity's infrastructure. The scale of the operation - positioned as a leading HSA administrator - means compromise scenarios affect working Americans' healthcare savings and medical expense records simultaneously.

Northwell Health operates as New York State's largest healthcare provider and private employer, running 28 hospitals and more than 1,000 outpatient facilities across the state. Founded in 1997 through the merger of North Shore Health System and Long Island Jewish Medical Center, the organization now employs over 104,000 team members and treats more than 2 million patients annually. The scale of operations spans clinical care, hospital operations, outpatient services, oncology, cardiovascular medicine, medical education, and research - creating a substantial digital attack surface that requires protecting patient data, medical devices, hospital networks, and research systems across a geographically distributed footprint. The organization's technical infrastructure supports both acute-care hospital operations and a vast ambulatory network delivering non-inpatient clinical services. This dual environment presents distinct security challenges: real-time clinical systems where availability is critical, electronic health records systems handling sensitive patient information at scale, medical IoT devices integrated across facilities, and research data requiring protection while enabling collaboration. The threat model includes ransomware targeting hospital operations, patient data exfiltration, medical device vulnerabilities, insider threats across a workforce exceeding 100,000, and supply chain risks inherent in healthcare technology ecosystems. As a nonprofit integrated healthcare network with explicit commitments to community health access and medical innovation, Northwell's security posture must balance robust protection with operational realities of healthcare delivery. The organization's focus on advancing medical education and research adds complexity around academic partnerships, data sharing protocols, and protecting intellectual property. Security teams operate within regulatory frameworks including HIPAA and state privacy laws while supporting clinical workflows that cannot tolerate the downtime or friction common in other industries.