Purpose/Mission

Organizations no longer operate in a fixed environment. Today, more than ever, it is critical to continually innovate and address the new technologies, laws and regulations that impact organizations as they develop and grow.

The Research Advisory Council will identify opportunities to help ensure the HITRUST Approach remains current and relevant to the needs of the HITRUST community. Members will advise and make recommendations to the HITRUST Office of Research and Strategy (OR&S) based on their area of research or technical expertise.

The mission of the Research Advisory Council is to support the OR&S in facilitating continuous improvement of information security and individual privacy by providing thought leadership on the emerging trends impacting risk management and compliance.

Key Focus Area(s)

The key focus area of this Council will be to address emerging trends, such as blockchain technologies, artificial intelligence, federated identity, and the Internet of Things, to ensure the HITRUST Approach sets the bar for organizations seeking the most comprehensive yet tailorable privacy and security risk management and compliance framework available.

Membership

The RAC shall consist of no less than four (4) and no more than twelve (12) subject matter experts (SMEs) from industry and/or academia, none of whom may work for HITRUST. Membership shall be based on one’s professional expertise in research, data analysis, statistics and/or a specific area of research.

Expectations

The Research Advisory Council Members are requested to attend all established meetings; review and comment on materials, as needed, prior to each meeting; and, from time-to-time, as needed, address specific issues pertaining to the work of the Council. Members are expected to have extensive experience in security, privacy and/or risk domains, and an understanding of security and privacy controls relevant to their area of research and/or technical expertise.

Meeting Schedule

The Research Advisory Council will meet remotely, via teleconference, at least three (3) times a year. The Council will also hold in-person meetings at least once annually, concurrent with the annual HITRUST conference, May 19-21, 2020.

If you have any questions, or need further information, email groups@HITRUSTAlliance.net.