HITRUST Announces Availability of Shared Responsibility Matrix FRISCO, Texas – March 4, 2020 – HITRUST, a leading data protection, standards development, and certification organization, announces the general availability of the HITRUST Shared Responsibility Program and Matrix™ Version 1.0. The Matrix is the first ever common model for communicating and assigning security and privacy responsibility between…

Ken Vander Wal Retiring; Jeremy Huval Named as New Chief Compliance Officer FRISCO, TX, January 27, 2020 – HITRUST, a leading data protection standards development and certification organization, announced today that Jeremy Huval was promoted to Chief Compliance Officer, effective January 15, 2020. Huval served as Vice President of Compliance and Internal Audit for HITRUST…

FRISCO, Texas – Dec. 11, 2019 – HITRUST®, a leading data protection standards development and certification organization, announced a collaboration with Frist Cressey Ventures to form the Venture Capital Advisory Council (“VC Council”) and Venture Program, comprised of some of the most influential venture capital firms. As venture capital firms seek to reduce cyber risks and…

Support for California Consumer Privacy Act (CCPA) standards in HITRUST CSF to help businesses better identify and remediate gaps in CCPA-specific security and privacy controls FRISCO, Texas – November 21, 2019 – HITRUST, a leading data protection standards development and certification organization, has incorporated the CCPA standard into HITRUST CSF version 9.3, providing businesses with…

Comprehensive TPRM Methodology and enhancements to HITRUST Assessment XChange™ combine to overcome TPRM Challenges   FRISCO, Texas – November 12, 2019 – HITRUST, a leading data protection standards development and certification organization, today announced a major release of its HITRUST Third-Party Risk Management (“TPRM”) Methodology that introduces numerous new components including an Inherent Risk Questionnaire,…

Latest release of HITRUST CSF adds CCPA, SCIDSA, and NIST SP 800-171 authoritative sources as well as updates six others FRISCO, Texas – October 28, 2019 – HITRUST, a leading data protection standards development and certification organization, today announced the availability of version 9.3 of the HITRUST CSF information risk and compliance management framework, further…

Latest release of HITRUST MyCSF® brings innovations in custom assessments, user interface, third-party assurance, and control inheritance FRISCO, Texas – September 26, 2019 – HITRUST, a leading data protection standards development and certification organization, today announced a significant new release of its information risk and compliance assessment SaaS platform. HITRUST is continually innovating MyCSF® to…

Expands role of Internal Audit Department participation in streamlining HITRUST CSF Assessments FRISCO, Texas–HITRUST, a leading data protection standards development and certification organization, released updated guidance for placing reliance on the results of previously performed audits, assessments, and inspections. These policy and methodology updates create opportunities for greater assessment efficiency and customer cost savings. HITRUST…

Establishes New Board Subcommittee and Leverages Automation and Analytics to Drive Further Improvements in Quality, Consistency, and Efficiency of CSF Assessments and Reports FRISCO, Texas – September 4, 2019 – HITRUST, a leading data protection standards development and certification organization, continues its commitment to improving and ensuring the quality, consistency, and efficiency of information security…

Launches initiative to extend duration between assessments by factoring in control maturity scoring and integrating continuous monitoring FRISCO, Texas – August 8, 2019 – HITRUST, a leading data protection standards development and certification organization, today announced a new initiative to incentivize information security teams working towards better information security control maturity. HITRUST also disclosed findings…