Case Study: York Risk Services Group achieves a robust, standardized IT security framework and faster incident response with ServiceNow

York Risk Services Group - Customer Case Study

York Risk Services Group, the third-largest third‑party administrator in the U.S. with more than 80 locations and 5,000 staff, handles claims and risk management across multiple sectors. Rapid, acquisition‑led growth left a geographically dispersed IT estate with many point tools and manual, document‑based incident processes, making standardized, auditable security difficult to manage.

Working with CareWorks Tech, York deployed ServiceNow Security Operations (built on the NIST framework) and integrated existing tools such as Tanium, going live in six weeks to automate incident response, enforce SLAs, and create a security service catalog. The platform consolidated security data, reduced response times, provided full audit trails and reporting to simplify compliance (e.g., HIPAA, NY cybersecurity rules), and delivered a more mature, auditable security posture while York expands into vulnerability management.

York Risk Services Group

Tina Price

AVP IT Security and Governance