News

HITRUST Releases Expanded CSF v9.2

Latest version includes shift to industry-agnostic approach and Singapore’s Personal Data Protection Act   HITRUST today announced the release of version 9.2 of the HITRUST CSF. This version integrates Singapore’s Personal Data Protection Act (PDPA) into the HITRUST CSF and includes additional plain language interpretations of relevant articles and recitals from the European Union’s General Data…

Notice of HITRUST CSF Assurance Program Updates

Frisco, TX, January 15, 2019 – HITRUST, in collaboration with the Quality Subcommittee of the HITRUST CSF Assessor Council, is announcing updates to the HITRUST CSF Assurance Program to provide greater transparency and ensure continued integrity relating to HITRUST CSF Assessments. The HITRUST CSF Assurance Program is governed by a comprehensive set of requirements, which…

HITRUST® Releases Threat Catalogue to Improve Risk Management

Catalogue Provides Enhanced Visibility into Cybersecurity Threats    Frisco, TX., November 1, 2018 – HITRUST, a leading security and privacy standards development and certification organization, is releasing its Threat Catalogue to provide organizations with greater visibility into the threats and risks targeting their information, assets and operations. In addition to helping organizations understand the threats…

New HITRUST Program to Help Start-Ups with Information Privacy and Security

RightStart Program™ to ensure information privacy and security is foundational element of start-ups’ core infrastructure Frisco, TX – October 9, 2018 – HITRUST is helping start-up companies make information privacy and security a foundational component while still focusing on growing their business with the introduction of the RightStart Program™. The newly introduced program helps start-ups…

Trend Micro and HITRUST Launch New Company to Provide Cyber Risk Management as a Service to Select U.S. Enterprises

Cysiv extends and elevates in-house, enterprise security capabilities and operations DALLAS, Sept. 10, 2018 – Trend Micro Incorporated (TYO: 4704; TSE: 4704), a global leader in cybersecurity solutions, and HITRUST®, a leading security and privacy standards development, accreditation and information risk management organization, today announced they are partnering to launch Cysiv, a new company which…

HITRUST Program Addresses Security Risks and Inefficiencies When Leveraging Cloud Service Providers

Shared Responsibility Program streamlines security control ownership and responsibility Frisco, TX – September 6, 2018 – To address the growing misunderstandings, risks and complexities when leveraging service providers, HITRUST® is introducing a new program to clarify the roles and responsibilities regarding ownership and operation of security controls while automating and streamlining the assurance process when…

Nation’s Health CISOs Take Lead to Manage Third-Party Risk

Recommend approach to manage third-party risk and streamline supply chain ecosystem BOSTON, MA – August 29, 2018 – Prominent Chief Information Security Officers (CISOs) from leading health systems and providers throughout the country have come together to establish the Provider Third Party Risk Management Council to develop, recommend and promote a series of practices to…

HITRUST® Provides NIST Cybersecurity Framework Certification

HITRUST CSF® Assessment together with NIST Cybersecurity Framework Subcategories becoming standard reporting approach for boards of directors Frisco, TX – May 22, 2018 – HITRUST, a leading security and privacy standards development and accreditation organization, announced today its certification program for the National Institute of Standards and Technology’s (NIST) Framework for Improving Critical Infrastructure Cybersecurity, more widely…

GAO Report Recognizes the Importance of the HITRUST CSF

A recent Government Accountability Office (GAO) report, entitled Critical Infrastructure Protection: Additional Actions Are Essential for Assessing Cybersecurity Framework Adoption,[1] supports prior guidance that the NIST Cybersecurity Framework requires specific control requirements to effectively implement the Framework’s cybersecurity objectives. The report also “encourages the alignment of the NIST cybersecurity framework with existing cybersecurity guidelines currently…

With the one-year anniversary of WannaCry quickly approaching, the industry is asking: Have we learned anything?

Research from Trend MicroTM and HITRUST® – including the HITRUST Cyber Threat XChange, which detected and shared early indicators of compromise for WannaCry – suggests that healthcare environments may not be any more secure than before the event occurred. Rather, the attack surface has expanded as healthcare organizations continue to adopt new technology or connect new…

x

Chat Now

This is where you can start a live chat with a member of our team