CASE STUDY
ÉTUDE DE CAS
How DocGo turned security into a business driver (and shaved weeks off sales cycles)
“With Vanta, the biggest win is the perception change that security is, in fact, a business enabler. That’s a major cultural shift that I’ve hoped to make many times in my career.”
TL;DR
- Challenge: Compliance, risk, and trust workflows were spread across siloed tools—creating low visibility, heavy manual work, and slow sales cycles.
- Solution: Centralized compliance, risk management, and customer trust in Vanta, replacing manual workflows with automation and real-time visibility.
- ROI: Cut partner reviews by 3–4 weeks, removed 30–40 hours of manual work per questionnaire, fast-tracked ISO 27001 with less manual effort.
The company
Healthcare on the go, serving the underserved
DocGo delivers mobile healthcare across 31 US states, bringing medical services directly to more than 1 million patients who might not otherwise have access to timely care. Because the DocGo team handles sensitive medical information and partners with major hospital networks, security and trust have always been paramount to how it operates.
The challenge
Security and trust, scattered across tools
As DocGo grew, so did its compliance requirements—and the tool stack meant to handle it. Managing ISO, SOC 2, HIPAA-related controls, and risk in separate systems limited visibility and led to duplicated, inconsistent work.
“It was like looking through a keyhole at any given moment,” said Eiwe Lingefors, DocGo’s CIO and CISO.
This fragmented, low-visibility approach to compliance slowed sales cycles and made it difficult to communicate compliance updates to the board. For a lean security team supporting a nationwide healthcare operation, the manual workload became unsustainable. Risk management was “ad hoc at best,” and each questionnaire consumed 30–40 hours of manual effort.
{{quote-2}}
The Vanta impact
A single platform to centralize security, risk, and trust
Thanks to previous experience using Vanta, Lingefors knew it could meet DocGo’s needs for a platform that could unify compliance frameworks, centralize risk, automate monitoring, speed deals with a Trust Center, and scale with a lean team.
“Vanta had evolved since I used it last,” said Lingefors. “And much to my delight, it was also entering areas, like risk management, where it could be even more helpful.”
Here’s how DocGo rolled out the Vanta platform as a single, centralized solution to replace scattered tools and manual workflows:
With Vanta in place, DocGo can now focus confidently on protecting patients, supporting partners, and expanding care.
{{quote-3}}
