In conjunction with the internal audit team of a major healthcare organization, ITEGRITI collected evidence through interviews, observation, and documentation, assessing the alignment of implemented security review processes with implemented organizational policies, procedures, and guidelines. The ITEGRITI team determined areas of inconsistency and significant gaps, identifying opportunities for improvement to help mitigate organizational risk.