July 9, 2021
HIPAA Compliance, Audits, and the MyCSF Compliance and Reporting Pack for HIPAA
By Leslie Weinstein, Solutions Director, HITRUST With many years of experience in cybersecurity, I can say with confidence that health information security is not...
April 1, 2020
Addressing the Impact of COVID-19 on CSF Assessment Procedures
By Jeremy Huval, Chief Compliance Officer As COVID-19 continues to spread across the globe and affect the way we live and work, countries around...
September 27, 2017
Achieving the Benefits of the NIST Cybersecurity Framework
Comparing the NIST Cybersecurity Framework and HITRUST Common Security Framework The NIST Cybersecurity Framework (NIST CsF) continues to gain traction as a tool for...
November 21, 2017
Why HITRUST?
Written by Sean Murphy, Vice President and Chief Information Security Officer, Premera. Misguided…uninformed…cynical…maybe. Brilliant…accurate…shared by you?…could be! In any case, I thought I’d share...
September 27, 2017
Juggling Act: Effective Security Due Diligence During M&A Periods
Written by Ryan Freeman-Jones, Senior Manager and West Coast Office Lead, Meditology Services Healthcare mergers and acquisitions (M&A) have quickly become one of the...
September 22, 2017
New Self-Paced HITRUST Certified CSF Practitioner Refresher Course Available
HITRUST understands that our practitioners are busy, and to make it easier for them to keep their certification up to date and in good...
July 5, 2017
The HITRUST CSF as a Business Mentality
Written by Glenn D. Stover, CISSP, HCISPP, Beebe Healthcare I have worked in the IT and healthcare field now for several decades — to...
July 5, 2017
HITRUST CSF = A Prescription for HIPAA Compliance
Written by Ali Pabrai, MSEE, CISSP (ISSAP, ISSMP), CCSFP Member (FBI) InfraGard & HITRUST CSF Assessor Council Every business, every organization, across the United...
December 29, 2017
HIPAA, HHS OCR, and HITRUST | How do they all fit together
Written by HITRUST Independent Security Journalist Sean Martin. Given the complex regulatory and standards environment – albeit, designed to raise the level of an...
May 9, 2019
HITRUST’s Shared Responsibility Working Group Ensuring Efficient Operation of Security Controls for Customer of Cloud Services and Cloud Providers
By Matthew Datel, Director of Education and Strategic Initiatives and Becky Swain, Director, Standards Development, HITRUST Since September 2018, the 21 members of the...
July 8, 2019
HITRUST Shared Responsibility Program Helps Organizations and Cloud Service Providers Collaborate to Protect Data in the Cloud
By Becky Swain, Director, Standards Development Your cloud provider is certified to comply with all the major regulations for protecting data in the cloud....
September 11, 2019
“Using Work of Others” Initiative from HITRUST Streamlines IT Security Control Assessments to Promote a Culture of Risk Management Collaboration
By Jeremy Huval, Vice President, Compliance & Internal Audit Completing HITRUST CSF Assessments will now require less time and fewer resources—thanks to the “Using...