Medsi manages information security with CyberRating CICADA8

2025: CyberRating Rollout

CICADA8 has built a process of monitoring the information security of contractors and counterparties using the CICADA8 CyberRating platform for the federal network of private clinics of the Medsi Group of Companies. The Cicada8 (iTIPPI Services) announced this on January 27, 2026.

Earlier, the processes of evaluating counterparties in MEDSI were built around classical parameters: financial stability, legal purity and reputational risks. With the development of the ecosystem of external interactions, the task arose to check the level of their security, since even a single vulnerability of the counterparty can lead to compromise of the customer.

In the course of such attacks hackers , the target victim is hacked not directly, but through its weakly protected counterparty. to data According to CICADA8 research, more than half of contractors have serious shortcomings in protection against cyber threats, and their - IT perimeter contains a number of vulnerabilities and incorrect settings. The importance of the problem was also emphasized by representatives who FSTEC of Russia had previously reported that the regulator plans to present critical information infrastructure certain information security requirements to contractors of significant facilities.

To solve these problems, as well as increase the transparency and manageability of digital risks, MEDSI Group introduced the CyberRating CICADA8 platform, a Russian solution for automated assessment of cybersecurity of contractors and subsidiaries. The platform evaluates a large range of criteria and, based on non-invasive analysis, forms a cumulative rating of companies' security. This rating is updated in real time, which helps to assess the reliability of partners and reduce potential threats in the ecosystem of interactions.

The CICADA8 CyberRating platform has become for MEDSI a single tool that allows not only responding to cyber threats, but managing them at the level of business processes - with visual analytics, visualization and integration into corporate systems. At the supplier selection stage, the transparent CICADA8 CyberRating methodology helps to make an informed decision, and after the start of cooperation, it helps to control changes in the level of its security in real time. Thus, if necessary, MEDSI can preemptively restrict the access of vulnerable contractors to its infrastructure in order to mitigate the risks of possible cyber attacks through them.

For us, the safety of these patients is an absolute priority. CyberRating CICADA8 gave us the opportunity to manage not only our own, but also external risks. All MEDSI counterparties are divided into groups depending on their level of access to the company's infrastructure. Each group has developed its own list of information security requirements, compliance with which allows minimizing the risks of attacks through contractors. CICADA8 CyberRating helps us monitor the implementation of these requirements, as well as compile ratings for the most protected counterparties within each group, "said Vitaly Medvedev, Information Security Director of MEDSI Group.

Attacks through contractors are becoming an increasingly serious cyber threat, and we welcome the deliberate approach of MEDSI Group of Companies to managing digital risks. Monitoring the level of information security of counterparties will allow the company to ensure even more reliable protection of key business processes and customer data, - commented on the project Sergey Kolesnikov, technical director of the CICADA8.