Cyber Risk and Compliance News, Threats and Trends

Featured Press Release

Hear how we’re making news across the
information security landscape.

Featured Advisory

Get the latest updates to make sure your
program adapts to the  latest threats.

Press Releases and Advisories

Search:

Topic:

Type:

Sep 23, 2025

HITRUST Appoints Gregory Webb as Chief Executive Officer

Leadership, Cybersecurity, Third-Party Risk Management

Read Now

Aug 14, 2025

HITRUST Appoints Tom Kellermann as Vice President of Cyber Risk to Expand Leadership and Market for Cybersecurity Assurance

Leadership, Cybersecurity, Third-Party Risk Management

Read Now

Jan 23, 2025

HITRUST Delivers on Commitment to Make Third-Party Risk Management Practical and Efficient

Leadership, Third-Party Risk Management, ServiceNow

Read Now

Jul 31, 2025

Threat Analysis Confirms HITRUST e1, i1, and r2 Controls Mitigate the Most Prevalent Attack Techniques in 2025

Threat Management, HITRUST Framework (CSF), Threat Adaptive

Read Now

Apr 10, 2025

HITRUST Quarterly Threat Analysis Confirms CSF v11.2 Addresses 100% of MITRE ATT&CK® Techniques

Threat Management, HITRUST Framework (CSF), Threat Adaptive

Read Now

Mar 17, 2025

HITRUST Secures Growth Investment from Brighton Park to Accelerate Innovation in Cybersecurity and Information Risk Assurance

Leadership, Cybersecurity, HITRUST Assurance Program

Read Now

Feb 20, 2025

HITRUST 2025 Trust Report Demonstrates Improved Cybersecurity Outcomes For Certified Organizations

Leadership, HITRUST Assurance Program, Trust

Read Now

Dec 12, 2024

Lloyd’s of London Launches First-of-its-kind Consortium Built on HITRUST Certification to Shape the Future of Cyber Insurance

Risk Management, HITRUST Assurance Program, Cyber Insurance

Read Now

Nov 19, 2024

HITRUST Launches AI Security Assessment with Certification Setting Benchmark for AI Security Assurance

Assessments, AI, Certifications, Data Security

Read Now

Oct 3, 2024

HITRUST Achieves Major Milestone with Availability of Solution Making it Practical to Manage Third-Party (Information Security) Risk

Data Security, Third-Party Risk Management, IT Compliance

Read Now

Oct 1, 2024

HITRUST Announces Continuous Assurance through the Proven HITRUST Ecosystem

Leadership, HITRUST Assurance Program, Trust

Read Now

Sep 11, 2024

HITRUST Announces Annual Collaborate Conference Agenda and Keynote Lineup

HITRUST Collaborate, Leadership

Read Now

Aug 21, 2024

HITRUST Launches New AI Risk Management Assessment

Risk Management, AI, NIST, ISO

Read Now

May 16, 2024

HITRUST Announces Availability of New Cyber Insurance Product Exclusively for Its Customers

Risk Management, Cyber Insurance, Trust

Read Now

May 1, 2024

HITRUST Enhances Cyber Threat Adaptive Engine Using Microsoft Azure OpenAI Service and Microsoft Defender Threat Intelligence

Threat Management, HITRUST Framework (CSF), Threat Adaptive

Read Now

Apr 16, 2024

HITRUST Announces CSF v11.3.0 Launch to Enhance Its Industry Leading Security Framework

Leadership, HITRUST Framework (CSF)

Read Now

Apr 15, 2024

HITRUST’s Inaugural Trust Report Sets New Industry Standard for Cybersecurity Assurances and Information Risk Reduction

Leadership, Cybersecurity, HITRUST Assurance Program

Read Now

Mar 4, 2024

HITRUST Supports Release of NIST 2.0 and Unveils Companion Guide to Cyber Resilience

Cybersecurity, HITRUST Framework (CSF), NIST, Compliance

Read Now

Mar 7, 2024

HITRUST Announces Formation of AI Assurance Working Group to Ensure Security and Trust of AI Technologies in Business

AI, Cybersecurity

Read Now

Oct 30, 2023

HITRUST Responds to White House RFI for Harmonization of Cyber Frameworks

Cybersecurity, HITRUST Framework (CSF)

Read Now

Oct 10, 2023

HITRUST Releases the Industry's First AI Assurance Program

AI, Cybersecurity, HITRUST Assurance Program

Read Now

Sep 19, 2023

HITRUST Assurance Program Selected by Health3PT in Alignment with Recommended Practices

Third-Party Risk Management, Healthcare, HITRUST Assurance Program

Read Now

Apr 12, 2023

HITRUST Now Available in the Microsoft Azure Marketplace

MyCSF

Read Now

Apr 18, 2023

HITRUST Completes Compliance Reporting Pilot in Support of Microsoft’s Global Healthcare Compliance Scale Initiative

Healthcare, Compliance

Read Now

Feb 28, 2023

HITRUST to Streamline Regulatory Compliance Reporting

MyCSF, Compliance

Read Now

Nov 14, 2022

HITRUST Addresses Key National Information Security Priorities

Data Security, Third-Party Risk Management

Read Now

Nov 4, 2022

Leveraging HITRUST to Demonstrate Adherence with OCR Recognized Security Practices Guidance

Cybersecurity, Compliance

Read Now

Aug 22, 2022

HITRUST Selected for TEFCA Security Certification

Certifications

Read Now

May 24, 2022

HITRUST Removes Barriers to Leveraging Information Assurance Results

Results Distribution System

Read Now

Dec 16, 2021

HITRUST i1 Assessment Control Selection Leverages Security Best Practices and Threat Intelligence

Read Now

Oct 6, 2021

HITRUST to Address Market Gaps in Reliability and Challenges in the Exchange of Security and Privacy Assessments

Assessments, Certifications

Read Now

Sep 9, 2021

HITRUST Reaches New Milestone in Report Delivery Turnaround

Read Now

Jun 7, 2021

HITRUST Achieves Milestones in Quality and Throughput of its Assurance Program

Read Now

Feb 2, 2021

HITRUST to Increase Assurances and Efficiencies of CSF Assessments

Read Now

Jan 12, 2021

HITRUST Announces Changes to Executive Leadership Team

Read Now

Jan 7, 2021

HITRUST Collaborates with AWS and Microsoft Azure to Enhance the Shared Responsibility Approach for Cloud Security

Read Now

Dec 15, 2022

HITRUST redesigns CSF in v11 to increase efficiencies and cyber threat-adaptive assurances

Cybersecurity, HITRUST Framework (CSF), Threat Adaptive

Read Now

Aug 22, 2025

HAA 2025-003 HITRUST CSF Version 11.6.0 Release

HITRUST Framework (CSF)

Read Now

Aug 22, 2025

HAA 2025-004 HITRUST CSF v11.5 Creation Deadline for e1 and i1 Assessments

HITRUST Framework (CSF)

Read Now

Apr 14, 2025

HAA 2025-002 CSF v11.4.0 Creation Deadline for e1 and i1 Assessments

HITRUST Framework (CSF)

Read Now

Apr 14, 2025

HAA 2025-001 HITRUST CSF Version 11.5.0 Release

HITRUST Framework (CSF)

Read Now

Dec 6, 2024

HAA 2024-008 - Introducing the HITRUST AI Security Assessment

Read Now

Dec 6, 2024

HAA 2024-006 - CSF Version 11.4.0 Release

Read Now

Dec 6, 2024

HAA 2024-007 - CSF v11.3.2 Creation Deadline for e1 and i1 Assessments

Read Now

Dec 6, 2024

HAA 2024-009 - HITRUST Issued NIST Cybersecurity Framework (CSF) v2.0 Certification Report

Read Now

Dec 6, 2024

HAA 2024-005- HITRUST Assessment Handbook v1.1

Read Now

Aug 27, 2024

HAA 2024-004: Introducing e1 and i1 Combined Assessment

Read Now

Apr 16, 2024

HAA 2024-002: CSF Version 11.3 Release HAA 2024-002: CSF Version 11.3 Release

HITRUST Framework (CSF), HITRUST Assurance Program, Compliance

Read Now

Apr 16, 2024

HAA 2024-003: CSF v11.2 Creation Deadline for e1 and i1 Assessments

HITRUST Framework (CSF), HITRUST Assurance Program

Read Now

Jan 12, 2016

HAA 2016-004: HITRUST CSF Assurance Program Change Related to the Addition of a Required Control for Certification in HITRUST CSF V8

Read Now

Apr 15, 2021

HAA 2021-001: Reservation System for Scheduling HITRUST Quality Assurance for HITRUST CSF Validated Assessments

Read Now

Jan 11, 2019

HAA 2019-003: Ensuring Clarity of Scope of an Assessment

Read Now

Jan 8, 2016

HAA 2016-001: Clarification of HITRUST CSF Assurance Requirements Related to an Assessed Entity Outsourcing Selected HITRUST CSF Controls

Read Now

Nov 3, 2021

HAA 2021-010: HITRUST MyCSF Enhancements – Tasks and Notifications

Read Now

Jun 3, 2021

HAA 2021-003: CAP Identification Changes

Read Now

Nov 2, 2021

HAA 2021-009: HITRUST MyCSF Enhancements – Webforms

Read Now

Jan 9, 2019

HAA 2019-001: Providing Direction for HITRUST Approved Assessor Organizations

Read Now

Nov 4, 2021

HAA 2021-011: HITRUST MyCSF Enhancements – HITRUST CSF Report Format Changes

Read Now

Mar 16, 2020

HAA 2020-002: Impact Of COVID-19 on Assessment Timelines

Read Now

Sep 3, 2019

HAA 2019-009: Updated Scoring Rubric HAA 2019-009: Updated Scoring Rubric

Read Now

Apr 15, 2020

HAA 2020-004: HITRUST CSF Bridge Assessments

Read Now

Oct 29, 2021

HAA 2021-007: HITRUST MyCSF Enhancements – New Assessment Workflows

Read Now

Jun 2, 2021

HAA 2021-002: HITRUST CSF Validated Assessment Enhancements

Read Now

Nov 1, 2021

HAA 2021-008: HITRUST MyCSF Enhancements – Status Dashboards

Read Now

Jan 15, 2019

HAA 2019-005: Changes Related to Interim Reviews

Read Now

Jul 14, 2020

HAA 2020-005: Enhancing Assurance Advisories

Read Now

Jan 14, 2019

HAA 2019-004: Changed to Further Ensure HITRUST Approved Assessor Quality and Consistency

Read Now

Jan 10, 2019

HAA 2019-002: Change Regarding the Number of Qualified HITRUST Certified CSF Practitioner (CCSFP) Hours for HITRUST CSF Validated Assessments

Read Now

Aug 24, 2017

HAA 2017-003: Interim Assessment Integrated into MyCSF 2.0

Read Now

Oct 19, 2021

HAA 2021-006: HITRUST MyCSF Preview of Assessment Changes Including CSF Version Upgrades

Read Now

Mar 29, 2019

HAA 2019-006: Extension to the Qualification Requirement for Assessor Quality Assurance (QA) Personnel

Read Now

Jun 4, 2021

HAA 2021-004: MyCSF Enhancements for v9.x and Later CSF Versions

Read Now

Jan 12, 2016

HAA 2016-003: HITRUST CSF Assurance Program Change Related to the Addition of a Required Control for Certification in HITRUST CSF V8

Read Now

Sep 12, 2017

HAA 2017-004: HITRUST CSF Validation Requirements

Read Now

Oct 18, 2021

HAA 2021-005: CSF Versioning Policy HAA 2021-005: CSF Versioning Policy

Read Now

Aug 30, 2019

HAA 2019-007: Updated PRISMA Attribute Weights

Read Now

Jul 26, 2016

HAA 2016-005: New Controls for HITRUST CSF V8

Read Now

Jan 11, 2016

HAA 2016-002: HITRUST CSF Assurance Program Requirement Change Related to Timely Submission of Corrective Action Plans That are Required as Part of Certification Report Issuance

Read Now

Dec 28, 2021

HAA 2021-012: i1 Introduction and r2 Enhancements

Read Now

Mar 6, 2017

HAA 2017-001: Processing of Validated Assessment Reports

Read Now

Sep 2, 2019

HAA 2019-008: Automated Quality Checking of HITRUST CSF Assessment Objects

Read Now

Mar 30, 2020

HAA 2020-003: Assessment Scoping Factor Enhancements Designed to Reduce the Effort Associated with and Increase the Accuracy of CSF Assessments

Read Now

Jul 31, 2017

HAA 2017-002: Using SOC Reports in support of HITRUST CSF Validated Assessments

Read Now

Mar 5, 2020

HAA 2020-001: Waiver of On-Site Requirement for Validated Assessments

Read Now

Jul 27, 2016

HAA 2016-006: Certification to Require All CSF Controls Within 5 Years

Read Now

Dec 29, 2021

HAA 2021-013: HITRUST Control Maturity Scoring Rubric Update (version 3)

Read Now

Jul 28, 2016

HAA 2016-007: Organizational Risk Factors Updated for CSF V8 Release

Read Now

Jul 29, 2016

HAA 2016-008: Deadline to Submit CSF V7-Based Assessments

Read Now

Aug 1, 2016

HAA 2016-009: Intent of Readiness Assessments

Read Now

Aug 3, 2016

HAA 2016-011: HITRUST Implements External Assessor Timesheet Functionality

Read Now

Aug 2, 2016

HAA 2016-010: Testing Protocols for Control Inheritance

Read Now

Dec 15, 2016

HAA 2016-012: HITRUST Authorized External Assessor Access to MyCSF

Read Now

Sep 11, 2019

HAA 2019-011: Relying on the Work of Internal Assessors

Read Now

Sep 11, 2019

HAA 2019-010: Updated Documentation Requirements for Relying on Third-Party Reports

Read Now

Dec 30, 2021

HAA 2021-014: CSF Version 9.6 Release HAA 2021-014: CSF Version 9.6 Release

Read Now

Jul 12, 2022

HAA 2022-001: Retirement of Legacy Assessment Workflows

Read Now

Jan 12, 2023

HAA 2023-001: CSF Version 11 Release HAA 2023-001: CSF Version 11 Release

Read Now

Jan 13, 2023

HAA 2023-002: CSF Version 9.1 – 9.4 Decommission Notice

Read Now

Jan 16, 2023

HAA 2023-003: CSF v9.6.2 Creation and Submission Deadlines for i1 Assessments

Read Now

Jan 17, 2023

HAA 2023-004: e1 Assessment Introduction

Read Now

Jan 19, 2023

HAA 2023-005: i1 Rapid Recertification HAA 2023-005: i1 Rapid Recertification

Read Now

Apr 4, 2023

HAA 2023-006: CSF Version 11.1 Release HAA 2023-006: CSF Version 11.1 Release

Read Now

Apr 4, 2023

HAA 2023-007: CSF v11.0 Creation Deadline for e1 and i1 Assessments

Read Now

Apr 4, 2023

HAA 2023-008: Exposure Drafts – Risk Management Handbook and Assessment Handbook

Read Now

Aug 17, 2023

HAA 2023-009: Shared Responsibility Matrix (SRM) V1.4.1 Update

Read Now

Sep 12, 2023

HAA 2023-010: HITRUST Risk Management Handbook

Read Now

Oct 10, 2023

HAA 2023-011: CSF Version 11.2 Release HAA 2023-011: CSF Version 11.2 Release

Read Now

Oct 10, 2023

HAA 2023-012: CSF v11.1 Creation Deadline for e1 and i1 Assessments

Read Now

Oct 10, 2023

HAA 2023-013: CSF Version 9.5 – 9.6 Decommission Notice

Read Now

Oct 16, 2023

HAA 2023-014: HITRUST Assessment Handbook

Read Now

Feb 8, 2024

HAA 2024-001: i1 Rapid Recertification Release

Read Now

Cybersecurity Press Releases and Advisories

Stay Ahead With HITRUST®

Featured Press Release

Featured Advisory

Press Releases and Advisories

HITRUST Appoints Gregory Webb as Chief Executive Officer HITRUST Appoints Gregory Webb as Chief Executive Officer

HITRUST Appoints Tom Kellermann as Vice President of Cyber Risk to Expand Leadership and Market for Cybersecurity Assurance HITRUST Appoints Tom Kellermann as Vice President of Cyber Risk to Expand Leadership and Market for Cybersecurity Assurance

HITRUST Delivers on Commitment to Make Third-Party Risk Management Practical and Efficient HITRUST Delivers on Commitment to Make Third-Party Risk Management Practical and Efficient

Threat Analysis Confirms HITRUST e1, i1, and r2 Controls Mitigate the Most Prevalent Attack Techniques in 2025 Threat Analysis Confirms HITRUST e1, i1, and r2 Controls Mitigate the Most Prevalent Attack Techniques in 2025

HITRUST Quarterly Threat Analysis Confirms CSF v11.2 Addresses 100% of MITRE ATT&CK® Techniques HITRUST Quarterly Threat Analysis Confirms CSF v11.2 Addresses 100% of MITRE ATT&CK® Techniques

HITRUST Secures Growth Investment from Brighton Park to Accelerate Innovation in Cybersecurity and Information Risk Assurance HITRUST Secures Growth Investment from Brighton Park to Accelerate Innovation in Cybersecurity and Information Risk Assurance

HITRUST 2025 Trust Report Demonstrates Improved Cybersecurity Outcomes For Certified Organizations HITRUST 2025 Trust Report Demonstrates Improved Cybersecurity Outcomes For Certified Organizations

Lloyd’s of London Launches First-of-its-kind Consortium Built on HITRUST Certification to Shape the Future of Cyber Insurance Lloyd’s of London Launches First-of-its-kind Consortium Built on HITRUST Certification to Shape the Future of Cyber Insurance

HITRUST Launches AI Security Assessment with Certification Setting Benchmark for AI Security Assurance HITRUST Launches AI Security Assessment with Certification Setting Benchmark for AI Security Assurance

HITRUST Achieves Major Milestone with Availability of Solution Making it Practical to Manage Third-Party (Information Security) Risk HITRUST Achieves Major Milestone with Availability of Solution Making it Practical to Manage Third-Party (Information Security) Risk

HITRUST Announces Continuous Assurance through the Proven HITRUST Ecosystem HITRUST Announces Continuous Assurance through the Proven HITRUST Ecosystem

HITRUST Announces Annual Collaborate Conference Agenda and Keynote Lineup HITRUST Announces Annual Collaborate Conference Agenda and Keynote Lineup

HITRUST Launches New AI Risk Management Assessment HITRUST Launches New AI Risk Management Assessment

HITRUST Announces Availability of New Cyber Insurance Product Exclusively for Its Customers HITRUST Announces Availability of New Cyber Insurance Product Exclusively for Its Customers

HITRUST Enhances Cyber Threat Adaptive Engine Using Microsoft Azure OpenAI Service and Microsoft Defender Threat Intelligence HITRUST Enhances Cyber Threat Adaptive Engine Using Microsoft Azure OpenAI Service and Microsoft Defender Threat Intelligence

HITRUST Announces CSF v11.3.0 Launch to Enhance Its Industry Leading Security Framework HITRUST Announces CSF v11.3.0 Launch to Enhance Its Industry Leading Security Framework

HITRUST’s Inaugural Trust Report Sets New Industry Standard for Cybersecurity Assurances and Information Risk Reduction HITRUST’s Inaugural Trust Report Sets New Industry Standard for Cybersecurity Assurances and Information Risk Reduction

HITRUST Supports Release of NIST 2.0 and Unveils Companion Guide to Cyber Resilience HITRUST Supports Release of NIST 2.0 and Unveils Companion Guide to Cyber Resilience

HITRUST Announces Formation of AI Assurance Working Group to Ensure Security and Trust of AI Technologies in Business HITRUST Announces Formation of AI Assurance Working Group to Ensure Security and Trust of AI Technologies in Business

HITRUST Responds to White House RFI for Harmonization of Cyber Frameworks HITRUST Responds to White House RFI for Harmonization of Cyber Frameworks

HITRUST Releases the Industry's First AI Assurance Program HITRUST Releases the Industry's First AI Assurance Program

HITRUST Assurance Program Selected by Health3PT in Alignment with Recommended Practices HITRUST Assurance Program Selected by Health3PT in Alignment with Recommended Practices

HITRUST Now Available in the Microsoft Azure Marketplace HITRUST Now Available in the Microsoft Azure Marketplace

HITRUST Completes Compliance Reporting Pilot in Support of Microsoft’s Global Healthcare Compliance Scale Initiative HITRUST Completes Compliance Reporting Pilot in Support of Microsoft’s Global Healthcare Compliance Scale Initiative

HITRUST to Streamline Regulatory Compliance Reporting HITRUST to Streamline Regulatory Compliance Reporting

HITRUST Addresses Key National Information Security Priorities HITRUST Addresses Key National Information Security Priorities

Leveraging HITRUST to Demonstrate Adherence with OCR Recognized Security Practices Guidance Leveraging HITRUST to Demonstrate Adherence with OCR Recognized Security Practices Guidance

HITRUST Selected for TEFCA Security Certification HITRUST Selected for TEFCA Security Certification

HITRUST Removes Barriers to Leveraging Information Assurance Results HITRUST Removes Barriers to Leveraging Information Assurance Results

HITRUST i1 Assessment Control Selection Leverages Security Best Practices and Threat Intelligence HITRUST i1 Assessment Control Selection Leverages Security Best Practices and Threat Intelligence

HITRUST to Address Market Gaps in Reliability and Challenges in the Exchange of Security and Privacy Assessments HITRUST to Address Market Gaps in Reliability and Challenges in the Exchange of Security and Privacy Assessments

HITRUST Reaches New Milestone in Report Delivery Turnaround HITRUST Reaches New Milestone in Report Delivery Turnaround

HITRUST Achieves Milestones in Quality and Throughput of its Assurance Program HITRUST Achieves Milestones in Quality and Throughput of its Assurance Program

HITRUST to Increase Assurances and Efficiencies of CSF Assessments HITRUST to Increase Assurances and Efficiencies of CSF Assessments

HITRUST Announces Changes to Executive Leadership Team HITRUST Announces Changes to Executive Leadership Team

HITRUST Collaborates with AWS and Microsoft Azure to Enhance the Shared Responsibility Approach for Cloud Security HITRUST Collaborates with AWS and Microsoft Azure to Enhance the Shared Responsibility Approach for Cloud Security

HITRUST redesigns CSF in v11 to increase efficiencies and cyber threat-adaptive assurances HITRUST redesigns CSF in v11 to increase efficiencies and cyber threat-adaptive assurances

HAA 2025-003 HITRUST CSF Version 11.6.0 Release HAA 2025-003 HITRUST CSF Version 11.6.0 Release

HAA 2025-004 HITRUST CSF v11.5 Creation Deadline for e1 and i1 Assessments HAA 2025-004 HITRUST CSF v11.5 Creation Deadline for e1 and i1 Assessments

HAA 2025-002 CSF v11.4.0 Creation Deadline for e1 and i1 Assessments HAA 2025-002 CSF v11.4.0 Creation Deadline for e1 and i1 Assessments

HAA 2025-001 HITRUST CSF Version 11.5.0 Release HAA 2025-001 HITRUST CSF Version 11.5.0 Release

HAA 2024-008 - Introducing the HITRUST AI Security Assessment HAA 2024-008 - Introducing the HITRUST AI Security Assessment

HAA 2024-006 - CSF Version 11.4.0 Release HAA 2024-006 - CSF Version 11.4.0 Release

HAA 2024-007 - CSF v11.3.2 Creation Deadline for e1 and i1 Assessments HAA 2024-007 - CSF v11.3.2 Creation Deadline for e1 and i1 Assessments

HAA 2024-009 - HITRUST Issued NIST Cybersecurity Framework (CSF) v2.0 Certification Report HAA 2024-009 - HITRUST Issued NIST Cybersecurity Framework (CSF) v2.0 Certification Report

HAA 2024-005- HITRUST Assessment Handbook v1.1 HAA 2024-005- HITRUST Assessment Handbook v1.1

HAA 2024-004: Introducing e1 and i1 Combined Assessment HAA 2024-004: Introducing e1 and i1 Combined Assessment

HAA 2024-002: CSF Version 11.3 Release HAA 2024-002: CSF Version 11.3 Release

HAA 2024-003: CSF v11.2 Creation Deadline for e1 and i1 Assessments HAA 2024-003: CSF v11.2 Creation Deadline for e1 and i1 Assessments

HAA 2016-004: HITRUST CSF Assurance Program Change Related to the Addition of a Required Control for Certification in HITRUST CSF V8 HAA 2016-004: HITRUST CSF Assurance Program Change Related to the Addition of a Required Control for Certification in HITRUST CSF V8

HAA 2021-001: Reservation System for Scheduling HITRUST Quality Assurance for HITRUST CSF Validated Assessments HAA 2021-001: Reservation System for Scheduling HITRUST Quality Assurance for HITRUST CSF Validated Assessments

HAA 2019-003: Ensuring Clarity of Scope of an Assessment HAA 2019-003: Ensuring Clarity of Scope of an Assessment

HAA 2016-001: Clarification of HITRUST CSF Assurance Requirements Related to an Assessed Entity Outsourcing Selected HITRUST CSF Controls HAA 2016-001: Clarification of HITRUST CSF Assurance Requirements Related to an Assessed Entity Outsourcing Selected HITRUST CSF Controls

HAA 2021-010: HITRUST MyCSF Enhancements – Tasks and Notifications HAA 2021-010: HITRUST MyCSF Enhancements – Tasks and Notifications

HAA 2021-003: CAP Identification Changes HAA 2021-003: CAP Identification Changes

HAA 2021-009: HITRUST MyCSF Enhancements – Webforms HAA 2021-009: HITRUST MyCSF Enhancements – Webforms

HAA 2019-001: Providing Direction for HITRUST Approved Assessor Organizations HAA 2019-001: Providing Direction for HITRUST Approved Assessor Organizations

HAA 2021-011: HITRUST MyCSF Enhancements – HITRUST CSF Report Format Changes HAA 2021-011: HITRUST MyCSF Enhancements – HITRUST CSF Report Format Changes

HAA 2020-002: Impact Of COVID-19 on Assessment Timelines HAA 2020-002: Impact Of COVID-19 on Assessment Timelines

HAA 2019-009: Updated Scoring Rubric HAA 2019-009: Updated Scoring Rubric

HAA 2020-004: HITRUST CSF Bridge Assessments HAA 2020-004: HITRUST CSF Bridge Assessments

HAA 2021-007: HITRUST MyCSF Enhancements – New Assessment Workflows HAA 2021-007: HITRUST MyCSF Enhancements – New Assessment Workflows

HAA 2021-002: HITRUST CSF Validated Assessment Enhancements HAA 2021-002: HITRUST CSF Validated Assessment Enhancements

HAA 2021-008: HITRUST MyCSF Enhancements – Status Dashboards HAA 2021-008: HITRUST MyCSF Enhancements – Status Dashboards

HAA 2019-005: Changes Related to Interim Reviews HAA 2019-005: Changes Related to Interim Reviews

HAA 2020-005: Enhancing Assurance Advisories HAA 2020-005: Enhancing Assurance Advisories

HAA 2019-004: Changed to Further Ensure HITRUST Approved Assessor Quality and Consistency HAA 2019-004: Changed to Further Ensure HITRUST Approved Assessor Quality and Consistency

HAA 2019-002: Change Regarding the Number of Qualified HITRUST Certified CSF Practitioner (CCSFP) Hours for HITRUST CSF Validated Assessments HAA 2019-002: Change Regarding the Number of Qualified HITRUST Certified CSF Practitioner (CCSFP) Hours for HITRUST CSF Validated Assessments

HAA 2017-003: Interim Assessment Integrated into MyCSF 2.0 HAA 2017-003: Interim Assessment Integrated into MyCSF 2.0

HAA 2021-006: HITRUST MyCSF Preview of Assessment Changes Including CSF Version Upgrades HAA 2021-006: HITRUST MyCSF Preview of Assessment Changes Including CSF Version Upgrades

HAA 2019-006: Extension to the Qualification Requirement for Assessor Quality Assurance (QA) Personnel HAA 2019-006: Extension to the Qualification Requirement for Assessor Quality Assurance (QA) Personnel

HAA 2021-004: MyCSF Enhancements for v9.x and Later CSF Versions HAA 2021-004: MyCSF Enhancements for v9.x and Later CSF Versions

HAA 2016-003: HITRUST CSF Assurance Program Change Related to the Addition of a Required Control for Certification in HITRUST CSF V8 HAA 2016-003: HITRUST CSF Assurance Program Change Related to the Addition of a Required Control for Certification in HITRUST CSF V8

HAA 2017-004: HITRUST CSF Validation Requirements HAA 2017-004: HITRUST CSF Validation Requirements

HAA 2021-005: CSF Versioning Policy HAA 2021-005: CSF Versioning Policy

HITRUST Appoints Gregory Webb as Chief Executive Officer

HITRUST Appoints Tom Kellermann as Vice President of Cyber Risk to Expand Leadership and Market for Cybersecurity Assurance

HITRUST Delivers on Commitment to Make Third-Party Risk Management Practical and Efficient

Threat Analysis Confirms HITRUST e1, i1, and r2 Controls Mitigate the Most Prevalent Attack Techniques in 2025

HITRUST Quarterly Threat Analysis Confirms CSF v11.2 Addresses 100% of MITRE ATT&CK® Techniques

HITRUST Secures Growth Investment from Brighton Park to Accelerate Innovation in Cybersecurity and Information Risk Assurance

HITRUST 2025 Trust Report Demonstrates Improved Cybersecurity Outcomes For Certified Organizations

Lloyd’s of London Launches First-of-its-kind Consortium Built on HITRUST Certification to Shape the Future of Cyber Insurance

HITRUST Launches AI Security Assessment with Certification Setting Benchmark for AI Security Assurance

HITRUST Achieves Major Milestone with Availability of Solution Making it Practical to Manage Third-Party (Information Security) Risk

HITRUST Announces Continuous Assurance through the Proven HITRUST Ecosystem

HITRUST Announces Annual Collaborate Conference Agenda and Keynote Lineup

HITRUST Launches New AI Risk Management Assessment

HITRUST Announces Availability of New Cyber Insurance Product Exclusively for Its Customers

HITRUST Enhances Cyber Threat Adaptive Engine Using Microsoft Azure OpenAI Service and Microsoft Defender Threat Intelligence

HITRUST Announces CSF v11.3.0 Launch to Enhance Its Industry Leading Security Framework

HITRUST’s Inaugural Trust Report Sets New Industry Standard for Cybersecurity Assurances and Information Risk Reduction

HITRUST Supports Release of NIST 2.0 and Unveils Companion Guide to Cyber Resilience

HITRUST Announces Formation of AI Assurance Working Group to Ensure Security and Trust of AI Technologies in Business

HITRUST Responds to White House RFI for Harmonization of Cyber Frameworks

HITRUST Releases the Industry's First AI Assurance Program

HITRUST Assurance Program Selected by Health3PT in Alignment with Recommended Practices

HITRUST Now Available in the Microsoft Azure Marketplace

HITRUST Completes Compliance Reporting Pilot in Support of Microsoft’s Global Healthcare Compliance Scale Initiative

HITRUST to Streamline Regulatory Compliance Reporting

HITRUST Addresses Key National Information Security Priorities

Leveraging HITRUST to Demonstrate Adherence with OCR Recognized Security Practices Guidance

HITRUST Selected for TEFCA Security Certification

HITRUST Removes Barriers to Leveraging Information Assurance Results

HITRUST i1 Assessment Control Selection Leverages Security Best Practices and Threat Intelligence

HITRUST to Address Market Gaps in Reliability and Challenges in the Exchange of Security and Privacy Assessments

HITRUST Reaches New Milestone in Report Delivery Turnaround

HITRUST Achieves Milestones in Quality and Throughput of its Assurance Program

HITRUST to Increase Assurances and Efficiencies of CSF Assessments

HITRUST Announces Changes to Executive Leadership Team

HITRUST Collaborates with AWS and Microsoft Azure to Enhance the Shared Responsibility Approach for Cloud Security

HITRUST redesigns CSF in v11 to increase efficiencies and cyber threat-adaptive assurances

HAA 2025-003 HITRUST CSF Version 11.6.0 Release

HAA 2025-004 HITRUST CSF v11.5 Creation Deadline for e1 and i1 Assessments

HAA 2025-002 CSF v11.4.0 Creation Deadline for e1 and i1 Assessments

HAA 2025-001 HITRUST CSF Version 11.5.0 Release

HAA 2024-008 - Introducing the HITRUST AI Security Assessment

HAA 2024-006 - CSF Version 11.4.0 Release

HAA 2024-007 - CSF v11.3.2 Creation Deadline for e1 and i1 Assessments

HAA 2024-009 - HITRUST Issued NIST Cybersecurity Framework (CSF) v2.0 Certification Report

HAA 2024-005- HITRUST Assessment Handbook v1.1

HAA 2024-004: Introducing e1 and i1 Combined Assessment

HAA 2024-003: CSF v11.2 Creation Deadline for e1 and i1 Assessments

HAA 2016-004: HITRUST CSF Assurance Program Change Related to the Addition of a Required Control for Certification in HITRUST CSF V8

HAA 2021-001: Reservation System for Scheduling HITRUST Quality Assurance for HITRUST CSF Validated Assessments

HAA 2019-003: Ensuring Clarity of Scope of an Assessment

HAA 2016-001: Clarification of HITRUST CSF Assurance Requirements Related to an Assessed Entity Outsourcing Selected HITRUST CSF Controls

HAA 2021-010: HITRUST MyCSF Enhancements – Tasks and Notifications

HAA 2021-003: CAP Identification Changes

HAA 2021-009: HITRUST MyCSF Enhancements – Webforms

HAA 2019-001: Providing Direction for HITRUST Approved Assessor Organizations

HAA 2021-011: HITRUST MyCSF Enhancements – HITRUST CSF Report Format Changes

HAA 2020-002: Impact Of COVID-19 on Assessment Timelines

HAA 2020-004: HITRUST CSF Bridge Assessments

HAA 2021-007: HITRUST MyCSF Enhancements – New Assessment Workflows

HAA 2021-002: HITRUST CSF Validated Assessment Enhancements

HAA 2021-008: HITRUST MyCSF Enhancements – Status Dashboards

HAA 2019-005: Changes Related to Interim Reviews

HAA 2020-005: Enhancing Assurance Advisories

HAA 2019-004: Changed to Further Ensure HITRUST Approved Assessor Quality and Consistency

HAA 2019-002: Change Regarding the Number of Qualified HITRUST Certified CSF Practitioner (CCSFP) Hours for HITRUST CSF Validated Assessments

HAA 2017-003: Interim Assessment Integrated into MyCSF 2.0

HAA 2021-006: HITRUST MyCSF Preview of Assessment Changes Including CSF Version Upgrades

HAA 2019-006: Extension to the Qualification Requirement for Assessor Quality Assurance (QA) Personnel

HAA 2021-004: MyCSF Enhancements for v9.x and Later CSF Versions

HAA 2016-003: HITRUST CSF Assurance Program Change Related to the Addition of a Required Control for Certification in HITRUST CSF V8

HAA 2017-004: HITRUST CSF Validation Requirements

HAA 2019-007: Updated PRISMA Attribute Weights

HAA 2016-005: New Controls for HITRUST CSF V8

HAA 2021-012: i1 Introduction and r2 Enhancements

HAA 2017-001: Processing of Validated Assessment Reports

HAA 2019-008: Automated Quality Checking of HITRUST CSF Assessment Objects

HAA 2020-003: Assessment Scoping Factor Enhancements Designed to Reduce the Effort Associated with and Increase the Accuracy of CSF Assessments

HAA 2017-002: Using SOC Reports in support of HITRUST CSF Validated Assessments

HAA 2020-001: Waiver of On-Site Requirement for Validated Assessments