Which level of assurance should you be requesting or pursuing?

For organizations seeking a HITRUST™ assessment to evaluate and communicate assurances over the security of protected health information (PHI), selecting the right assessment may be a dizzying prospect. In this webinar, you will hear directly from HITRUST along with Baker Tilly specialists as they discuss how organizations—challenged with limited time, resources and funding—should evaluate their risk in order to select the right level of assurance to satisfy their many stakeholders. During the discussion, we will review and differentiate HITRUST assessment types, and compare them to other frameworks. Our discussion will cover three HITRUST assessment types, including two new assessments recently released by HITRUST:

• HITRUST Basic, Current-State (bC) Assessment
• HITRUST Implemented, 1-year (i1) Validated Assessment
• HITRUST Risk-Based, 2-Year (r2) Validated Assessment

Key learning objectives

After attending this webinar, you will be able to:

• Describe the basics of each assessment type and why an organization would request one
• Discuss the similarities and differences between the types of assessments
• Identify the best assessment type for your organization based on risk

Who should attend?

This webinar is intended for organizations across a variety of industries that are currently going through a HITRUST validated assessment or are in the readiness stages of a validated assessment. Users of the validation reports may also find the webinar helpful to understand the validations being performed at your third-party provider.

Meet your presenters

Michael Parisi
Vice President of Adoption, HITRUST

Samantha Boterman, CISA, HITRUST CHQP, AWS CCP, ISO27001 Lead Implementer
Senior Manager, Baker Tilly Risk Advisory Practice

Dakota Schmidt, CISA, HITRUST CCSFP
Senior Consultant, Baker Tilly Risk Advisory Practice