Overview HITRUST is enhancing e1 or i1 assessments to provide a “combined assessment” option, in whi...
Overview The HITRUST CSF v11.3 framework (v11.3) is available within MyCSF and downloadable here as ...
Overview Upon the release of CSF v11.3, all new e1 and i1 assessments must be created using CSF v11....
Policy/Program Change Details This change adds CSF control 01.e, Review of User Access Rights, to th...
Policy/Program Change Details
Written by Ken Vander Wal, Chief Compliance Officer, HITRUST
Overview Tasks in MyCSF give HITRUST Assessed Entities and their HITRUST Authorized External Assesso...
Overview HITRUST assessments for CSF versions 9.x and later will no longer create CAPs for gaps that...
Overview New webforms are being introduced into MyCSF assessments as part of a larger suite of enhan...
Policy/Program Change Details
Overview Several changes have been introduced to the contents and format of the CSF Validated Assess...
To help ensure the rely-ability of HITRUST CSF Validated Reports and Certifications, assessors and a...
Policy/Program Change Details HITRUST’s scoring rubric, which assists organizations and their assess...
Summary HITRUST recognizes the challenges that assessed entities may be facing in completing their H...
Overview A new Assessment Workflow is being introduced as part of a larger suite of enhancements to ...
Overview HITRUST recognizes that implementation of a control is a key element that contributes to a ...
Overview This enhancement to MyCSF introduces several status dashboards to provide transparency rega...
Policy/Program Change Details HITRUST “CSF Implementation & Assurance Implementation Bulletins” will...
Policy/Program Change Details This bulletin is to inform HITRUST Assessor Organizations about a chan...
Advisory Details This bulletin is to communicate a change in the assurance process regarding the per...
Overview On or before December 4, 2021, HITRUST will introduce a new feature in MyCSF to allow Asses...
Overview HITRUST continually evaluates necessary changes in MyCSF based on community feedback and in...
Policy/Program Change Details This change adds CSF control 01.e, Review of User Access Rights, to th...
Summary To provide further transparency to the HITRUST Community a versioning policy for the HITRUST...
Policy/Program Change Details The point values, or “weightings”, of the five levels of HITRUST’s PRI...
Policy/Program Change Details This advisory reminds External Assessor Organizations of the addition ...
Policy/Program Change Details This change adds CSF control 01.e, Review of User Access Rights, to th...
Implementation and Timeline The ability to perform HITRUST Implemented 1-Year (i1) assessments in My...
Advisory Details This bulletin is to communicate a change in the assurance process regarding the pro...
Policy/Program Change Details An upcoming enhancement to MyCSF will introduce automated quality chec...
Policy/Program Change Details HITRUST is making the following changes to the assessment scoping fact...
In light of the recent spread of COVID-19, HITRUST encourages assessors to exercise judgement when p...
Policy/Program Change Details HITRUST policy has been to increase the number of control required for...
Overview HITRUST’s Control Maturity Scoring Rubric (“Rubric”), which assists assessed entities and t...
Policy/Program Change Details Organizational risk factors were revised as follows:
Policy/Program Change Details HITRUST will continue to accept, and process validated assessments und...
Policy/Program Change Details HITRUST continues to recommend that “readiness assessments” be conduct...
Policy/Program Change Details
Policy/Program Change Details This advisory clarifies the treatment of controls required for certifi...
Policy/Program Change Details This bulletin is to communicate some changes in policy regarding the a...
Policy/Program Change Details HITRUST will soon release updates to the CSF Assurance Program which a...
Policy/Program Change Details HITRUST will soon release updated guidance for placing reliance on the...
Implementation and Timeline v9.6 is available within MyCSF and for download here as of December 30, ...
Overview On February 15, 2022, HITRUST implemented a suite of enhancements to the MyCSF platform tha...
Overview The HITRUST CSF version 11 (v11) enables a fully traversable portfolio, which facilitates s...
Overview HITRUST invests in continuously evaluating new control requirements and expanding the cover...
Overview Upon the release of CSF v11, HITRUST is announcing the deadline for creating and submitting...
Overview HITRUST now offers a new, lower-effort, validated cybersecurity assessment and accompanying...
Overview HITRUST is introducing the Rapid Recertification option for i1 assessments which provides a...
Overview The HITRUST CSF v11.1 framework (v11.1) is available within MyCSF as of April 4, 2023.
Overview Upon the release of CSF v11.1, HITRUST is announcing the deadline for creating e1 and i1 as...
Overview HITRUST has published exposure drafts of the Risk Management Handbook and Assessment Handbo...
Overview The HITRUST Shared Responsibility Matrix® (SRM) has been updated to V1.4.1. The upgrade cou...
Overview The Risk Management Handbook presents risk management concepts and methodologies foundation...
Overview The HITRUST CSF v11.2 framework (v11.2) is available within MyCSF and downloadable here as ...
Overview Upon the release of CSF v11.2, all new e1 and i1 assessments must be created using CSF v11....
Overview HITRUST is decommissioning CSF v9.5 and v9.6 according to the timeline below.
Overview Version 1.0 of the Assessment Handbook is now available on the HITRUST website:
Overview In January 2023, HITRUST announced the Rapid Recertification option for qualifying i1 Asses...
Drive people to your products and services
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua.