News

HITRUST Appoints Kaiser Permanente’s George DeCesare to Board of Directors

HITRUST welcomes the appointment of George DeCesare, JD, Senior Vice President and Chief Technology Risk Officer of Kaiser Permanente Information Technology to the HITRUST Board of Directors. Mr. DeCesare is responsible for leading Cyber Security, Technology Governance, Risk and Compliance, and Identity and Access Management at Kaiser Permanente. He also maintains the security and integrity…

CyberAid Program Aims to Help Smaller Healthcare Organizations Manage Cyber Risk

HITRUST like many others has recognized that smaller organizations are struggling with the selection, acquisition, implementation, operation, and training associated with information security tools and processes necessary to demonstrate compliance and manage cyber risk. To address this challenge, HITRUST established CyberAid, an innovative approach designed to help smaller healthcare organizations—specifically physician practices with less than…

HITRUST Industry White Paper Outlines How the HITRUST CSF Addresses PMI DSP Principles and Framework Requirements

In March 2015, the White House called together leading experts and interested stakeholders in both the public and private sectors to develop a set of privacy and trust principles for users of Precision Medicine Initiative (PMI) data. The Precision Medicine Initiative: Privacy and Trust Principles, published in November 2015, provide broad guidance for governance; transparency;…

MyCSF Enhancements Make Managing Risk and Compliance Easier

Because we at HITRUST are committed to continuously improving our MyCSF Software as a Service (SaaS) offering and listening to user feedback, our Summer 2016 release of MyCSF features enhancements that increase its capabilities and further simplify the assessment process. MyCSF, with the addition of these enhancements, will continue to help healthcare and third-party organizations…

HITRUST CSF Version 8 Incorporates Additional Standards and Expanded Requirement Details

Updates include more granular support for cybersecurity, AICPA SOC2 reporting, contextual data de-identification, cloud services, and expanded requirement details. The Health Information Trust Alliance (HITRUST) announced today the general availability of the HITRUST CSF Version 8 (v8).  The new release formally integrates the American Institute of Certified Public Accountants’ (AICPA) mapping of the HITRUST CSF…

Updated Healthcare Sector Implementation Guide for NIST Cybersecurity Framework Now Available

An updated version of the Healthcare Sector Cybersecurity Framework Implementation Guide is now available. It incorporates the Health Insurance Portability and Accountability Act (HIPAA) Security Rule crosswalk published in April 2016 by the Department of Health and Human Services’ (HHS) Office of Civil Rights (OCR), in addition to other minor changes for clarity. The Guide…

New Enhancements Coming to MyCSF in June!

HITRUST is extremely pleased to announce major improvements to the MyCSF SaaS offering that will enhance the capabilities while making it more efficient and easier to use. As part of our commitment to continuously improve MyCSF, we’ve also listened to your comments and suggestions and incorporated some of them in the Summer 2016 (June 2016)…

New Guide Helps Healthcare Organizations Implement NIST Cybersecurity Framework

HITRUST, the Healthcare and Public Health (HPH) Sector Coordinating Council (SCC) and Government Coordinating Council (GCC), are pleased to announce the availability of a new guide to assist healthcare organizations in implementing the NIST Cybersecurity Framework (CsF). HITRUST developed this document in consultation with the HPH, SCC and GCC, along with input from other sector…

Understanding How to Leverage HITRUST CTX Against Ransomware

Recent media coverage has highlighted the impact a ransomware related attack can have on a healthcare organization and, specifically, the disruption to operations and delivery of care.  It is predicted that ransomware attacks targeted at healthcare organizations will only continue to increase. HITRUST CTX makes available an IOC feed which identifies Ransomware Domains during Deep-Web…

Hitrust Need Help
x

Chat Now

This is where you can start a live chat with a member of our team