External Reporting
By leveraging HITRUST’s CSF Assessment Reports, organizations can have a comprehensive, consistent, and standardized approach to communicating information privacy and security effectiveness to their customers. The HITRUST CSF Assurance Program is built upon the principles of integrity, transparency, and consistency to ensure that report recipients can understand and rely on the findings, while the Assess Once, Report Many approach allows one assessment to be used to satisfy numerous reporting requirements, thus reducing costs and saving resources.
Key reports that can be issued from performing a HITRUST CSF Assessment include a HITRUST CSF Assurance Report, a HITRUST CSF Letter of Certification, NIST Cybersecurity Framework Scorecard, and Certification, and a SOC2 + HITRUST CSF Assurance Report.
Get Started on an Assessment
You can begin reporting your information security posture to multiple industry partners by taking the first step and downloading the HITRUST CSF Framework.