The user-friendly MyCSF tool provides healthcare organizations of all types and sizes with a secure, web-based solution for accessing the HITRUST Common Security Framework (CSF), performing assessments, managing remediation activities, and reporting and tracking compliance. The fully integrated, optimized and powerful tool marries the content and methodologies of the CSF and CSF Assurance Program with the technology and capabilities of a governance, risk and compliance (GRC) tool.

With a subscription to MyCSF, organizations receive complete access to the CSF and authoritative sources, as well as the expanded benefit of having a complete picture of not only their current state of compliance, but also the support and direction needed to track and manage their remediation efforts and report on their progress.

By utilizing MyCSF, an organization significantly decreases the resources needed to implement, synchronize and manage a patchwork of tools not designed to function as a whole. HITRUST’s management and support of the MyCSF tool sets it apart as a one-of-a-kind resource for improving an organizations security program.

Subscription Options

Organizations may purchase a basic subscription to MyCSF with the option to purchase additional modules through MyCSF Plus. A basic subscription provides all the tools necessary for an organization to access the HITRUST CSF and conduct an assessment. MyCSF Plus offers modules built around the HITRUST CSF that an organization can use to move beyond an assessment and manage its overall security processes.