Hitrust Security Framework

Hitrust believes these changes are consistent with the letter and intent of the president s executive order on improving critical infrastructure cybersecurity which is to help raise the bar for security and privacy protection in the private sector and improve the nation s resilience to ever increasing cybersecurity threats.

Hitrust security framework.

It is also for those organizations that plan to leverage the framework and process internally. Hitrust march 1 2010 2 2 cloud security alliance controls matrix v1 0 joint commission formerly jcaho information management state of nevada nrs 603a hitrust september 10 2010 3 0 cms is ars v1 appendix a high hitrust december 1 2010 3 1 pci dss v2 0 hitrust august 4 2011 4 0 nist sp 800 53 r3 hie wg recommendations. The health information trust alliance hitrust is an organization governed by representatives from the healthcare industry. The company claims csf is a comprehensive prescriptive and certifiable framework that can be used by all organizations that create access store or exchange sensitive and or regulated data.

October 28 2014 the hitrust common security framework csf is an important tool that healthcare organizations of all sizes can use in their approach to regulatory compliance and risk. The governing body further added that the requests for combining soc 2 and hitrust reports are also. Hitrust created and maintains the common security framework csf a certifiable framework to help healthcare organizations and their providers demonstrate their security and compliance in a consistent and streamlined manner. Download the hitrust csf v9 4 free of charge.

Due to this hitrust csf has become a widely adopted security and privacy framework across industries globally. Between the csf s 19 reporting domains are 149 control specifications which can each be assessed to one of three implementation levels. Hitrust is a privately held company located in frisco texas united states that in collaboration with healthcare technology and information security organizations established the hitrust csf. The cost for the certified csf practitioner course is 3 000.

The course is required for individuals working as part of a hitrust authorized external assessor organization that wishes to provide hitrust and csf related services. Read about the hitrust common security framework here. The health information trust alliance hitrust is expecting a continuous demand for csf certification thanks to the third party assurance requirements from major health organizations. Hitrust in collaboration with private sector government technology and information privacy and security leaders has established the hitrust csf a certifiable framework that can be used by any organization that creates accesses stores or exchanges sensitive information.