The CSF integrates and harmonizes requirements from many authoritative sources such as ISO, NIST, PCI, HIPAA and others, and tailors the requirements to a healthcare organization based on specific organizational, system and regulatory risk factors. The level of integration and prescription in the framework along with the quality and rigor of the CSF Assurance Program and supporting HITRUST products and services makes the CSF the easy choice for healthcare.

Reference: Comparing the CSF, ISO/IEC 27001 and NIST SP 800-53 Brochure
and Selecting a Healthcare Information Security Risk Management Framework in a Cyber World


Was this helpful?

Yes No
You indicated this topic was not helpful to you ...
Could you please leave a comment telling us why? Thank you!
Thanks for your feedback.

Post your comment on this topic.

Post Comment