CSF Assessors
CSF Assessors are those organizations that have been approved by HITRUST for performing assessment and services associated with the CSF Assurance Program and the Common Security Framework (CSF), a comprehensive security framework that incorporates the existing security requirements of healthcare organizations.
CSF Assessors are critical to HITRUST's efforts to provide trained resources to healthcare organizations of varying size and complexity to assess compliance with security control requirements and document corrective action plans that align with the CSF.
HITRUST requires an organization to meet certain criteria in order to become accredited as a CSF Assessor. Requirements for an organization to become a CSF Assessor include:
- Completing the CSF Assessor Application and executing the HITRUST CSF Assessor Agreement.
- Having policies defined and procedures implemented to ensure the integrity and ethics of an organization's employees.
- Committing individuals to support HITRUST services and become trained as HITRUST Practitioners.
- Maintaining expertise through participation in HITRUST and other healthcare or security committees.
Current CSF Assessors
| Organization | Primary Contact | Date Effective |
|
AT&T Consulting www.att.com |
Carisa Brockman Carisa.Brockman@att.com Phone: 608-556-1431 | November 2010 |
|
BluePrint Healthcare IT www.blueprinthit.com |
Gregory Michaels greg.michaels@blueprinthit.com Phone: (732) 607-0011 | September 2011 |
|
Booz Allen Hamilton www.boozallen.com |
Tim Kwan Kwan_timothy@bah.com Phone: (415) 449-0909 | October 2012 |
|
Coalfire Systems, Inc www.coalfiresystems.com |
Andrew Hicks andrew.hicks@coalfiresystems.com Phone: 303-554-6333 | October 2011 |
|
ComplySmart, LLC www.complysmart.com |
Sherri Rowe srowe@complysmart.com Phone: 866-824-3680 | March 2013 |
|
Deloitte & Touche LLP www.deloitte.com |
Russell L. Jones rujones@deloitte.com Phone: 415-783-5054 | May 2010 |
|
Epstein Becker & Green, PC www.ebglaw.com |
Robert Hudock, Esq., CISSP rhudock@ebglaw.com Phone: 202-861-1893 | May 2012 |
|
Ernst & Young LLP www.ey.com |
Reza Chapman reza.chapman@ey.com Phone: 602-322-3111 | June 2011 |
|
Fortrex Technologies www.fortrex.com |
Chris Konrad konradc@fortrex.com Phone: 301-977-6966 | February 2010 |
|
Futaris Inc. www.futaris.com |
Chris Erdle cserdle@futaris.com Phone: 1-800-722-4411 | April 2013 |
|
Kratos SecureInfo www.secureinfo.com |
Bruce Gnatowski Phone: 703-488-2413 | March 2013 |
|
Lattimore Black Morgan & Cain www.lbmc.com |
Mark Fulford mfulford@lbmc.com Phone: 615-377-4600 | February 2010 |
|
Marlabs Inc www.marlabs.com |
Robert Parham, MBA, CISSP, HITRUST Director Information Security Practice Rob@marlabs.com Phone: 732-694-1000 Ext. 4200 | May 2012 |
|
PriceWaterhouseCoopers LLP www.pwc.com |
Brian D. Herr
Brian.D.Herr@us.pwc.com Phone: 617.530.7384 | March 2011 |
|
Protiviti Inc. www.protiviti.com |
J. C. (Cal) Slemp III Cal.slemp@protiviti.com Phone: 203-905-2926 | April 2010 |
|
Solutionary www.solutionary.com |
Corey Meyer coreymeyer@solutionary.com Phone: 402-361-3248 | November 2009 |
|
UHY Advisors www.uhyadvisors.com/uhy |
Norman Comstock Managing Director ncomstock@uhy-us.com O: 713.407.3191 M: 281.793.5859 | August 2012 |
|
Verizon Business www.verizonbusiness.com |
Omar Khawaja Omar.khawaja@verizonbusiness.com Phone: 703-886-6345 | July 2009 |
|
Wipfli LLP www.wipfli.com |
Rick Ensenbach rensenbach@wipfli.com Phone: 952-548-6708 | April 2013 |
To learn more about becoming a CSF Assessor or to return completed materials to HITRUST, email certification@HITRUSTalliance.net.
