External Assessors
External Assessors are organizations that have been approved by HITRUST for performing assessment and services associated with the CSF Assurance Program and the HITRUST CSF, a comprehensive security framework that incorporates the existing security requirements of organizations.
External Assessors are critical to HITRUST’s efforts to provide trained resources to organizations of varying size and complexity to assess compliance with security control requirements and document corrective action plans that align with the HITRUST CSF.
Search for a HITRUST Authorized External Assessor below.
**Each HITRUST External Assessor Organization (“EA Organization”) has been through a vetting process and demonstrated the ability to perform HITRUST CSF Assessments. The HITRUST vetting process includes reviewing policies and procedures and the background of the individuals performing the assessments. All EA Organizations are required to maintain at least 5 CCSFPs and 2 CHQPs employed within their organization at all times.
Obtaining an EA Organization status indicates that the EA Organization has met all HITRUST requirements to perform HITRUST CSF Assessments and has demonstrated an apparent ability to perform HITRUST CSF Assessments successfully. Although HITRUST strives to ensure that the list of EA Organizations on this webpage remains current and that the EA Organizations continue to meet our standards, HITRUST cannot guarantee that any EA Organization will be successful in their role as an EA Organization on any specific engagement.
*The KPMG name and logo are trademarks used under license by the independent member firms of the KPMG global organization. KPMG International’s Trademarks are the sole property of KPMG International and their use here does not imply auditing by or endorsement of KPMG International or any of its member firms.
-
Primary Contacts
Brad Lyons
blyons@360advanced.com
Phone: 866.418.1708 ext. 703
Direct Phone: 952.239.1661Jim Brennan
jbrennan@360advanced.com
Direct Phone: 727.686.2797Date Effective
June 2016
-
AARC-360
Primary Contacts
Neil Gonsalves
neil.gonsalves@aarc-360.com
Phone: 678-458-0912Date Effective
June 2018
-
Primary Contacts
Henry Lindemann
hlindemann@acaaponix.com
Phone: 646-531-5750Noah Fox
nfox@acaaponix.com
Phone: 646-939-9566Sales
sales@acaaponix.com
Phone: 212-951-1030Date Effective
February 2019
-
Agio
Primary Contacts
Shelly Harvill
shelly.harvill@agio.com
Phone: 405-245-9113Date Effective
July 2017
-
Primary Contacts
Steve Simmons
HITRUST.Info@a-lign.com
Phone: 888-702-5446 Ext. 103Date Effective
November 2015
-
Primary Contacts
Brett Williams
Brett.Williams@aprio.com
Phone: 770-353-7118Date Effective
August 2020
-
Armanino LLP
Primary Contacts
Patrick Hall
patrick.hall@armaninollp.com
Phone: 925-790-2600
Direct Phone: 972-790-2757Date Effective
August 2017
-
Date Effective
April 2018
-
AT&T Consulting
Primary Contacts
Carisa Brockman
cb006t@att.com
Phone: 608-556-1431Date Effective
November 2010
-
Avertium
Primary Contacts
Margie Dyer
margie.dyer@avertium.com
Phone: 865-244-3560Date Effective
June 2016
-
AWS Security Assurance Services
https://aws.amazon.com/professional-services/security-assurance-services/
Primary Contacts
Jonathon Harbin
jhharbin@amazon.com
(615)260-4127John Fischer
jofisc@amazon.com
(214)986-1202Date Effective
February 2021
-
AXIA Partners
Primary Contacts
Jessica Getz
jgetz@axiapartners-us.com
Phone: 713-589-3797Mandy Harris
mharris@axiapartners-us.com
Phone: 832-264-0385Date Effective
July 2019
-
Primary Contacts
Emily Di Nardo
Emily.DiNardo@bakertilly.comJeff Krull
Jeff.Krull@bakertilly.com
1.215.557.2223Date Effective
July 2016
-
Primary Contacts
Swathi Sakhilati
ssakhilati@barradvisory.com
Phone: 913-579-8314Brad Thies
bthies@barradvisory.com
Phone: 913-579-8314Date Effective
September 2020
-
Primary Contacts
Deepak Chaudry
dchaudhry@bdo.com
Phone: 713-548-0939Josh Ayers
jayers@bdo.com
Phone: 314-889-1173Date Effective
September 2016
-
Beyond LLC
Primary Contacts
Cathlynn Nigh
cnigh@beyondhcllc.com
Phone: 773-243-9273Date Effective
August 2016
-
BlueOrange Compliance
Primary Contacts
Michael Freedman
michael.freedman@blueorangecompliance.com
Phone: 614-567-4130Date Effective
December 2017
-
Primary Contacts
Carl Cadregari
ccadregari@bonadio.com
Phone: 585-249-2779Date Effective
February 2017
-
Brown Smith Wallace LLP
Primary Contacts
Greg Smith, Partner
gsmith@bswllc.com
Phone: 314-983-1306Date Effective
August 2018
-
ByLight (Ember)
Primary Contacts
Adrian Gerber
Adrian.gerber@embercybersecurity.com
Phone: 703-224-1000Date Effective
February 2018
-
Primary Contacts
Jenny Shen
Jenny@thecadencegroup.com
Main Phone:801-349-1360
Direct Phone:801-787-1264Date Effective
June 2019
-
Primary Contacts
Steven J. Ursillo, Jr.
sursillo@cbh.com
Phone: 401-250-5605
Neal Beggan
nbeggan@cbh.com
Phone: 703-506-4440
Cell: 703-887-6509Date Effective
August 2017
-
Primary Contacts
Phillip Del Bello
phillip.delbello@CLAconnect.com
Phone: 410-308-8181Date Effective
March 2016
-
Primary Contacts
Zach Shales
HITRUST@coalfire.com
Phone:877-224-8077Date Effective
October 2011
-
CompliancePoint
Primary Contacts
Carol Amick
camick@compliancepoint.com
Office: 770) 255-1100
Direct: (678) 287-7777
Mobile: (678) 521-2340Date Effective
May 2017
-
ControlCase
Primary Contacts
Kishor Vaswani
kvaswani@controlcase.com
Phone:703-483-6383Date Effective
April 2014
-
Primary Contacts
Aaron Thomas
Aaron_Thomas@copelandbuhl.com
Phone:952-476-7183Date Effective
September 2019
-
Carr, Riggs & Ingram (CRI)
Primary Contacts
David Mills
dmills@cricpa.com
Phone:334-347-0088
Medaria Chang
mchang@cricpa.com
Phone: 334-347-0088Date Effective
August 2016
-
Crimson Security Inc.
Primary Contacts
Dave Hogan
Email: dave.hogan@crimsonsecurity.com
Phone: 631-265-3564Date Effective
April 2018
-
Primary Contacts
Erika Del Giudice, CISA, CRISC, HITRUST CCSFP
erika.delgiudice@crowe.com
Phone: 630-575-4366Date Effective
May 2017
-
Primary Contacts
Tim Roncevich
Tim.Roncevich@CGCompliance.com
Phone: 1-866-480-9485 x215Date Effective
July 2017
-
Primary Contacts
Allen Bradley
Email: abradley@deloitte.com
Phone: 901-322-6829Date Effective
May 2010
-
Primary Contacts
N Ramu
ramun@deloitte.com
Phone: (+91) 040-7125-3680
Mobile: (+91) 99896 10301Date Effective
January 2018
-
Digital Forge Cybersecurity
Primary Contacts
Wayne Will
wwill@dfcyber.com
Phone: (877) 369-1831 x4831Date Effective
March 2018
-
Dixon Hughes Goodman
Date Effective
July 2017
-
Drummond Group
Primary Contacts
Mike Wion
mike.wion@drummondgroup.comPhone:248-621-3547
Doug Ochs
doug@drummondgroup.comPhone:240-575-7447
Main: 469-374-8796
Date Effective
February 2018
-
-
Primary Contacts
Debra Hopkinson dhopkinson@ehnac.org
Phone:860-408-1620Date Effective
January 2017
-
Primary Contacts
Eric A. Pulse
epulse@eidebailly.com
Phone: 605-977-4847Date Effective
April 2018
-
Primary Contacts
Jay Brietz CPA, CIA
jay.brietz@elliottdavis.com
Phone: 704-808-5247Date Effective
May 2017
-
Emagine IT
Primary Contacts
Kris Martel
kris.martel@eit2.com
540-326-6929Bhanu Jagasia
Bhanu.jagasia@eit2.com
571.269.4272Date Effective
August 2020
-
Primary Contacts
Primal Parikh
premal.parikh@eshacorpit.com
Phone: 609-937-0835
Raj Chowdhari raj.chowdhari@eshacorpit.com
Phone:732-443-3468 x802Date Effective
December 2018
-
Primary Contacts
Brian Huston
brian.huston@ey.com
Phone: 312-879-2653Date Effective
June 2011
-
Ernst & Young India
Primary Contacts
Harish Agarwal harish.agarwal@in.ey.com
Phone: +91 33 6615 3500
Abbas Godhrawala abbas.godhrawala@in.ey.com
Phone: +91 22 61920106Date Effective
August 2016
-
Primary Contacts
Larry Burke
lburke@focal-point.com
Phone: 954-439-5278Date Effective
November 2018
-
Primary Contacts
Timothy P. Agee tim.agee@formosconsulting.com
Phone:615-330-8652Date Effective
April 2017
-
Fortified Health Security
Primary Contacts
William Crank wcrank@fortifiedhealthsecurity.com
Phone: 615-557-7441Date Effective
February 2017
-
Primary Contacts
Andrew Hicks andrew.hicks@frazierdeeter.com
Phone: 720-232-3982Sabrina Serafin sabrina.serafin@frazierdeeter.com
Phone: 404-253-7482Brandon Sherman brandon.sherman@frazierdeeter.com
Phone: 615-416-6836Date Effective
November 2016
-
Primary Contacts
Jennifer Jones
jennifer.jones@us.gt.comDate Effective
June 2016
-
I.S. Partners LLC
Primary Contacts
Robert Godard rgodard@ispartnersllc.com
Phone: 866-642-2230
Mobile: 908-902-3041Date Effective
July 2016
-
Intraprise Health
Primary Contacts
Pamela Hayduk phayduk@intraprisehealth.com
Phone:609-458-5386Date Effective
September 2011
-
Primary Contacts
Erik Jones
hitrust@jacobianengineering.com
Phone: 425-644-8208Date Effective
June 2016
-
King & Spalding
Primary Contacts
Robert Hudock
rhudock@kslaw.com
Phone: 202-626-5521Phyllis Sumner
psumner@kslaw.com
Phone: 404-572-4799Date Effective
October 2018
-
Primary Contacts
Hal Wolfe
h.wolfe@kirkpatrickprice.com
Phone: 800-977-3154 x106Date Effective
April 2017
-
Primary Contacts
Patricio Garcia
pat@kompleye.com
571.830.5140Date Effective
October 2020
-
Primary Contacts
Bassam Qasim
bqasem@kpmg.com
Phone: 267-256-1793Nicole Romano
nicoleromano@kpmg.com
Phone: 267-256-1793Date Effective
July 2016
-
KPMG in India
Primary Contacts
Sundar Ramaswamy
Email: sr@kpmg.comGururaja M
Email: mgururaja@kpmg.comRahul Singhal
Email: rahulsinghal@kpmg.comDate Effective
January 2021
-
Date Effective
April 2017
-
Lark Security
Primary Contacts
James Frady
HITRUST@lark-security.com
Phone: 303-800-1872Nick Angotti
HITRUST@lark-security.com
Phone: 303-800-1872Date Effective
December 2018
-
Layer 8 Security
Primary Contacts
Keith Wiley
keith.wiley@layer8security.com
Phone: 610-766-7312 x128Kevin Hyde kevin.hyde@layer8security.com
Phone: 610-766-7312 x106Date Effective
September 2019
-
Primary Contacts
Drew Hendrickson dhendrickson@lbmc.com
Phone: 615-690-1934Date Effective
February 2010
-
Primary Contacts
Rob Pierce
rob@linfordco.com
Phone: 303-882-3496Date Effective
November 2017
-
Primary Contacts
Kate Siegrist
KSiegrist@LurieLLP.com
Phone: 612-381-8824Date Effective
October 2019
-
The Mako Group
Primary Contacts
Shane O’Donnell
sodonnell@makpro.com
Phone: 313-355-0538Date Effective
May 2020
-
Primary Contacts
Steven Thomas
SThomas@maloneynovotny.com
Phone: 330-470-6012
Dale Dresch
DDresch@maloneynovotny.com
Phone: 216-344-5296Date Effective
November 2018
-
Primary Contacts
Christopher Shaffer
christopher.shaffer@marcumllp.com
Phone:214-276-1599Date Effective
August 2016
-
Primary Contacts
Jameson Miller
Jmiller@mjcpa.com
(423)756-6133Andrew Glenn
Aglenn@mjcpa.com
(423)756-6133Brandon Smith
Brsmith@mjcpa.com
(770)955-8600Date Effective
February 2021
-
Meditology Services
Primary Contacts
Cliff Baker
cliff.baker@meditologyservices.com
Phone: 678-595-8984Date Effective
May 2015
-
Primary Contacts
Chris Kradjan
chris.kradjan@mossadams.com
Phone: 206-302-6511Francis Tam
francis.tam@mossadams.com
Phone: 310-295-3852Kevin Villanueva
kevin.villanueva@mossadams.com
Phone: 206-302-6542Date Effective
February 2017
-
NCC Group
Primary Contacts
Jay Trinckes
Jay.Trinckes@NCCGroup.trust
Phone: 352-339-3887Joseph Meyer
Joseph.Meyer@NCCGroup.trust
Phone: 402-680-9649Date Effective
November 2017
-
NTT Security
Primary Contacts
Donny Mills
donny.mills@global.ntt
Phone: 402-361-3138Date Effective
November 2009
-
Optum
Primary Contacts
Brian Hukriede
mycsf_admin_irm@optum.comOptum is not providing external assessment work at this time.
Date Effective
March 2014
-
Postlethwaite & Netterville (P & N)
Primary Contacts
Paul Douglas
pdouglas@pncpa.com
Phone: 225-408-4421Rachael Higginbotham
rhigginbotham@pncpa.com
Phone: 225-408-4719Date Effective
January 2019
-
Palindrome Technologies
Primary Contacts
Mike Stauffer
palindrometech.com/hitrust/
Phone:571-344-2690Peter Thermos
peter.thermos@palindrometech.com
Phone: (732) 688-0413Date Effective
June 2018
-
Primary Contacts
Tim Bowling
tim.bowling@plantemoran.comDate Effective
July 2016
-
Primary Contacts
(US) Todd Bialick
todd.bialick@pwc.com
Phone: 972-236-4902Dennis Quandt
dennis.h.quandt@pwc.com
Phone: 617-530-5249Adrian Christie
adrian.christie@pwc.com
Phone: 617-530-7101
(India) Rahul Aggarwal
rahul2.aggarwal@pwc.com
Phone: +91 98112 99662Venkat Iyer
Venkatakrishnan.iyer@pwc.com
Phone: +91 99105 55034Date Effective
March 2011
-
Protiviti
Primary Contacts
Jeffrey Sanchez
jeffrey.sanchez@protiviti.com
Phone: 213-327-1433Date Effective
October 2016
-
Primary Contacts
Barry Mathis
bmathis@pyapc.com
Phone: 865-684-2785Date Effective
November 2018
-
Primary Contacts
Shyam Mishra
hitrust@quantum.securityDate Effective
April 2020
-
Primary Contacts
Brenda Brigman
brenda@myrasg.com
Phone: 901-969-4512Date Effective
September 2019
-
Primary Contacts
Christian Hyatt
christian.hyatt@risk3sixty.com
Phone: 404-333-1669Christian White
christian.white@risk3sixty.com
Phone: 770-289-3505Date Effective
February 2020
-
RSI Security
Primary Contacts
Administrative/Information Requests:
Lucy Phan
info@rsisecurity.com
lucy@rsisecurity.com
Phone: (858) 999-3030 Ext. 1000Sales Inquiries
John Shin
sales@rsisecurity.com
Phone: (858) 999-3030 Option 1Date Effective
June 2019
-
Primary Contacts
Greg Vetter
Greg.Vetter@rsmus.com
Phone: 212-372-1624Date Effective
July 2016
-
Primary Contacts
Doug Kanney, Greg Miller, Gary Nelson
HITRUST@schellmanco.comPhone: 866-254-0000, Option 1
Date Effective
May 2015
-
Secureworks
Primary Contacts
Date Effective
June 2019
-
Security Compliance Associates
Primary Contacts
Brian Fischer
brianf@SCAsecurity.com
Phone: 727-269-5214Date Effective
January 2019
-
Security Metrics
Primary Contacts
Jason Leland
jasonl@securitymetrics.com
Phone: 801-995-6490Lee Pierce
lee@securitymetrics.com
Phone: 801-705-5656Devin Bennett
dbennett@securitymetrics.com
Phone: 801-995-6415Date Effective
June 2019
-
Primary Contacts
Martha Raber
mraber@smith-howard.com
Phone: 404.879.3122Date Effective
November 2018
-
Specialized Security Services, Inc. (S3)
Primary Contacts
Mitchelle Schanbaum
mitchelle@s3security.com
Phone: 972-378-5554, Ext 301Date Effective
March 2016
-
Primary Contacts
Eric Andersen
eandersen@tannerco.com
Phone: 801-924-5118Date Effective
March 2018
-
TECH LOCK, Inc.
Primary Contacts
Brian McManamon
info@techlockinc.com
Phone: 847-245-3727Date Effective
March 2014
-
Primary Contacts
Steve Stumpfl
sstumpfl@tevora.com
Phone: 949-398-0121Date Effective
August 2014
-
Urbane Security
Primary Contacts
Erin Jacobs
ejacobs@urbanesecurity.com
Phone: 312.313.3733Brianna Violet
sales@urbanesecurity.com
Phone: 312.313.3710Date Effective
October 2019
-
Vicis Law PC
Primary Contacts
Samik Bhattacharyya
samik@vicislaw.com
Phone: 415-881-7262John Bolinguit
john@vicislaw.com
Phone: 415-633-6576Date Effective
January 2020
-
Primary Contacts
Paul Johnson
pjohnson@wipfli.com
Phone: 651-766-2895Date Effective
April 2013
-
Wolf & Company, P.C
Primary Contacts
Michael E. Kanarellis
mkanarellis@wolfandco.com
Phone: 617-428-5408Date Effective
February 2017
