Prepares for release of first-ever industry-driven health care security framework

Sep 9, 2008

Dallas – September 9, 2008 – The Health Information Trust Alliance (HITRUST) – the first industry-driven certifiable security standard developed in collaboration with healthcare, business, technology and information security leaders – today announced that it has expanded its Executive Council with the election of two new members: Patrick Heim, Chief Information Security Officer, Kaiser Permanente and Robert Mandel, MD, Vice President, Health Care Services, Blue Cross Blue Shield of Massachusetts. Today’s announcement points to the growing industry support and maturing of the HITRUST organization, which is preparing to release its highly anticipated Common Security Framework (CSF) in January 2009.

With the addition of two new members, the HITRUST Executive Council is now comprised of 10 executives tasked with providing strategic guidance and oversight. Existing members include: Paul Connelly, Vice President and Chief Information Security Officer, Hospital Corporation of America; Jim DeMaioribus, Senior Director, Health Care Strategy, Johnson & Johnson Health Care Systems, Inc.; Frank Grant, Senior Director – US Healthcare, Cisco Systems, Inc.; Kimberly S. Gray, Esq., CIPP, Chief Privacy Officer, Highmark Inc.; Nick Mankovich, Senior Director, Product Security & Privacy, Philips Healthcare; Jonathan Moore, Chief Information Security Officer, Humana Inc.; Russell Pierce, Chief Information Security Officer, CVS Caremark; and Daniel Nutkis, Chief Executive Officer, HITRUST.

“We are privileged and grateful to have individuals of this caliber on the HITRUST Executive Council. Patrick Heim and Robert Mandel, along with the entire council, bring invaluable leadership and diversity to HITRUST and I applaud the efforts of all those involved for demonstrating their commitment to achieving a higher level of trust in electronic health information,” said Daniel Nutkis.

HITRUST is the result of efforts from many of the industry’s leading health care organizations, professional services firms, information security and technology companies, liability insurers and other organizations who have joined to actively collaborate in the HITRUST CSF program. The HITRUST Common Security Framework (CSF) is a comprehensive set of tools developed to aid organizations in protecting their information assets and manage related risks, costs and complexities.

“HITRUST has proven that it has the vision, expertise and support necessary to transform the way information security is implemented through the industry, and I am delighted to have been elected as a member of the HITRUST Executive Council. I look forward to providing input to the evolution of the CSF and encourage its adoption throughout the system in order create a more trusting environment for business partners and patients alike,” added Patrick Heim.

“As an organization that recognizes the importance of information technology to improving quality and better management of medical expenses, we also recognize that a critical component to achieving their potential is confidence by business partners, regulators and consumers that safeguards are in place to protect sensitive health information,” added Robert Mandel. “HITRUST is filling a vital void in the health care industry and I am very pleased to have been elected as a member of the HITRUST Executive Council and look forward to actively contributing to this extremely valuable initiative.”

About HITRUST
The Health Information Trust Alliance (HITRUST) was born out of the belief that information security should be a core pillar of, rather than an obstacle to, the broad adoption of health information systems and exchanges. Security is critical to the broad adoption, utilization of and confidence in health information systems, medical technologies and electronic exchanges of health information. This, in turn, is critical to realizing the related promise of quality improvement and cost containment in America’s healthcare system. HITRUST is collaborating with healthcare, business, technology, and information security leaders to establish a certifiable framework that can be used by any and all organizations that create, access, store or exchange personal health and financial information. Beyond the establishment of the first-ever common security framework, HITRUST is also driving adoption and widespread confidence in the framework and sound risk management practices through awareness, education, advocacy and other outreach activities. For more information, visit www.HITRUSTalliance.org.
#########

All product and company names herein may be trademarks of their respective owners.

Media Contact:
Leslie Kesselring
Kesselring Communications, LLC (for HITRUST)
503.358.1012
leslie@kesselring.net