
July 5, 2017
The HITRUST CSF as a Business Mentality
Written by Glenn D. Stover, CISSP, HCISPP, Beebe Healthcare I have worked in the IT and healthcare field now for several decades — to...

July 5, 2017
HITRUST CSF = A Prescription for HIPAA Compliance
Written by Ali Pabrai, MSEE, CISSP (ISSAP, ISSMP), CCSFP Member (FBI) InfraGard & HITRUST CSF Assessor Council Every business, every organization, across the United...

December 29, 2017
HIPAA, HHS OCR, and HITRUST | How do they all fit together
Written by HITRUST Independent Security Journalist Sean Martin. Given the complex regulatory and standards environment – albeit, designed to raise the level of an...

May 9, 2019
HITRUST’s Shared Responsibility Working Group Ensuring Efficient Operation of Security Controls for Customer of Cloud Services and Cloud Providers
By Matthew Datel, Director of Education and Strategic Initiatives and Becky Swain, Director, Standards Development, HITRUST Since September 2018, the 21 members of the...

July 8, 2019
HITRUST Shared Responsibility Program Helps Organizations and Cloud Service Providers Collaborate to Protect Data in the Cloud
By Becky Swain, Director, Standards Development Your cloud provider is certified to comply with all the major regulations for protecting data in the cloud....

September 11, 2019
“Using Work of Others” Initiative from HITRUST Streamlines IT Security Control Assessments to Promote a Culture of Risk Management Collaboration
By Jeremy Huval, Vice President, Compliance & Internal Audit Completing HITRUST CSF Assessments will now require less time and fewer resources—thanks to the “Using...

February 2, 2018
Finding a Good Place to Start for GDPR Compliance
Written by HITRUST Independent Security Journalist Sean Martin. The Deadline for the European Regulation Is Approaching Fast and Will Impact Many US Companies. The...

March 6, 2018
The HITRUST CSF v9.1 Marches Forward
Written by HITRUST Independent Security Journalist Sean Martin. Laws in New York and in the European Union are increasingly relevant for many organizations and...

April 21, 2017
HITRUST CSF v9 Designed to Strengthen, Simplify, and Enhance Healthcare Regulatory Compliance and Risk Management
Written by HITRUST Independent Security Journalist Sean Martin. Get ready for more comprehensive compliance and risk management — with less work. HITRUST is putting...

June 28, 2016
Where Does Wearables Information Go: Privacy and Security Concerns
Written by HITRUST Independent Security Journalist Sean Martin. What are wearables used for? In many cases, for monitoring and recording health information. The sensors...

August 23, 2016
The HITRUST CSF Assurance and Third-Party Assurance Programs Benefit the Entire Industry
Written by HITRUST Independent Security Journalist Sean Martin. Healthcare organizations must regularly assess their vendors in order to understand their adherence to privacy and...

September 8, 2016
When De-identifying Patient Information, Follow the HITRUST Framework
Written by HITRUST Independent Security Journalist Sean Martin. It’s a noble goal: When healthcare data about patients is used and shared appropriately, there are...