HITRUST, the Healthcare and Public Health (HPH) Sector Coordinating Council (SCC) and Government Coordinating Council (GCC), are pleased to announce the availability of a new guide to assist healthcare organizations in implementing the NIST Cybersecurity Framework (CsF).

HITRUST developed this document in consultation with the HPH, SCC and GCC, along with input from other sector members and the DHS Critical Infrastructure Cyber Community (C3), to help HPH Sector organizations understand and use the HITRUST Risk Management Framework (RMF) – which consists of the HITRUST CSF, CSF Assurance Program and supporting methodologies—to implement the NIST CsF in the HPH Sector and meet its objectives for critical infrastructure protection.

Our mutual goal is to help organizations assess and improve their level of cyber resiliency, and provide suggestions on how to link cybersecurity with current information security and privacy risk management activities in the HPH Sector.

As a reminder, MyCSF users can conduct a NIST Cybersecurity Framework assessment and obtain an assessment scorecard.

Click the link to view and download the Healthcare Sector Cybersecurity Framework Implementation Guide.

For more information on the HPH SCC and GCC, go to https://www.dhs.gov/healthcare-and-public-health-sector-council-charters-membership.