Resources > Thought Leadership
The Trusted Authority for Unmatched Cybersecurity Confidence
Since our founding in 2007, we have led the charge in building trust in our industry, communities, and the world through education, harmonization, and implementation of information security best practices that protect us all.
Resources
May 1, 2023
Enabling a Robust Cybersecurity Posture Through HITRUST Certification Enabling a Robust Cybersecurity Posture Through HITRUST Certification
Certifications,
SOC 2,
HITRUST Assurance Program
Nov 1, 2022
Guide to Tailoring a HITRUST Security Assessment for TEFCA QHIN Applicants Guide to Tailoring a HITRUST Security Assessment for TEFCA QHIN Applicants
TEFCA,
Professional Education
Dec 31, 2022
Apr 15, 2024
HITRUST CSF v11.3.0 Summary of Changes HITRUST CSF v11.3.0 Summary of Changes
Assessments,
HITRUST Framework (CSF)
Feb 1, 2023
Nov 1, 2023
HITRUST CSF v11.2.0 Authoritative Sources Cross Reference HITRUST CSF v11.2.0 Authoritative Sources Cross Reference
Assessments,
HITRUST Framework (CSF),
Compliance
Dec 31, 2022
HITRUST Internal Assessor Application Form HITRUST Internal Assessor Application Form
Assessors
Sep 30, 2020
Evaluating Control Maturity Using the HITRUST Approach Evaluating Control Maturity Using the HITRUST Approach
Assessments,
MyCSF,
Maturity Scoring
Feb 1, 2023
v9.6 to v11.0 - i1 Assessment Crosswalk v9.6 to v11.0 - i1 Assessment Crosswalk
Assessments,
HITRUST Framework (CSF)
Sep 30, 2022
Venture Capital Participation Pledge Venture Capital Participation Pledge
Certifications,
HITRUST Assurance Program,
Compliance
Dec 1, 2022
Launching Authorized Internal Assessor Function Launching Authorized Internal Assessor Function
Assessments,
Assessors,
HITRUST Framework (CSF)
Jan 1, 2020
HITRUST Assurance Letter from Relying Party to Business Associate HITRUST Assurance Letter from Relying Party to Business Associate
Assessments,
Third-Party Risk Management,
HITRUST Assurance Program
Feb 1, 2019
HITRUST CSF Assessor Quality Checklist HITRUST CSF Assessor Quality Checklist
Assessors
Feb 28, 2024
Sep 1, 2020
Solving the Third-Party Risk Management Problem Solving the Third-Party Risk Management Problem
Risk Management,
Assessments,
Third-Party Risk Management
Jan 1, 2020
HITRUST r2 Assurance Letter from Vendor to Relying Parties HITRUST r2 Assurance Letter from Vendor to Relying Parties
Assessments,
Third-Party Risk Management,
HITRUST Assurance Program
Jan 14, 2024
Executive Summary - Risk Management Handbook Executive Summary - Risk Management Handbook
Risk Management,
HITRUST Assurance Program
Jan 1, 2020
HITRUST i1 Assurance Letter from Vendor to Relying Parties HITRUST i1 Assurance Letter from Vendor to Relying Parties
Assessments,
Third-Party Risk Management,
HITRUST Assurance Program
Oct 1, 2020
HITRUST Assessment XChange HITRUST Assessment XChange
Assessments,
Third-Party Risk Management,
HITRUST Assessment XChange
Dec 31, 2022
HITRUST Internal Assessor Program Benefit Overview HITRUST Internal Assessor Program Benefit Overview
Assessors,
Professional Education
Oct 16, 2023
May 2, 2022
HITRUST Control Maturity Scoring Rubric Update FAQs HITRUST Control Maturity Scoring Rubric Update FAQs
Assessments,
Maturity Scoring
Nov 1, 2022
Retirement of Legacy Assessment Workflow FAQs Retirement of Legacy Assessment Workflow FAQs
Assessments,
MyCSF
Apr 28, 2023
Feb 1, 2024
How HITRUST Helps Organizations Manage Risk How HITRUST Helps Organizations Manage Risk
Risk Management,
Certifications,
HITRUST Assurance Program
Oct 31, 2023
HITRUST CSF Comparison Between v11.1.0 to v11.2.0 HITRUST CSF Comparison Between v11.1.0 to v11.2.0
Assessments,
HITRUST Framework (CSF)
Nov 1, 2023
HITRUST RFI on Cybersecurity Regulatory Harmonization HITRUST RFI on Cybersecurity Regulatory Harmonization
Leadership,
Cybersecurity,
Regulation
Sep 14, 2022
The Assurance Intelligence Engine The Assurance Intelligence Engine
Assessments,
HITRUST Assurance Program,
Maturity Scoring
Dec 30, 2022
HITRUST External Assessor Requirements HITRUST External Assessor Requirements
Assessors,
Professional Education
Jan 14, 2024
Jan 1, 2020
HITRUST Assurance Letter from Relying Party to Vendor HITRUST Assurance Letter from Relying Party to Vendor
Assessments,
Third-Party Risk Management,
HITRUST Assurance Program
Oct 17, 2022
HITRUST TRPM Implementation: Handbook HITRUST TRPM Implementation: Handbook
Risk Management,
Assessments,
Third-Party Risk Management
Sep 27, 2022
HITRUST Venture Program HITRUST Venture Program
Certifications,
HITRUST Assurance Program
Jun 7, 2022
Sep 12, 2023
HITRUST CSF Control Maturity Scoring Rubrics HITRUST CSF Control Maturity Scoring Rubrics
Assessments,
Maturity Scoring
Apr 30, 2024
HITRUST Glossary of Terms and Acronyms HITRUST Glossary of Terms and Acronyms
HITRUST Assurance Program
Jul 18, 2022
HITRUST Approach to a Quasi Quantitative Residual Risk Analysis (QQRRA) HITRUST Approach to a Quasi Quantitative Residual Risk Analysis (QQRRA)
Risk Management,
Maturity Scoring,
Ransomware
Nov 1, 2023
HITRUST Summary of RFI - Opportunities and Obstacles to Harmonizing Cybersecurity Regulations HITRUST Summary of RFI - Opportunities and Obstacles to Harmonizing Cybersecurity Regulations
Leadership,
Cybersecurity,
Regulation
Jan 3, 2021
Jan 1, 2020
HITRUST Assurance Letter from Business to Relying Parties HITRUST Assurance Letter from Business to Relying Parties
Assessments,
Third-Party Risk Management,
HITRUST Assurance Program
Mar 8, 2021
No results found
X
Legal and Regulatory
We work closely with the public and private sectors as well as government agencies to provide an integrated approach to cybersecurity that can address multiple best practice frameworks, standards, and legislative and regulatory requirements.
Read our response to the White House Office of the National Cyber Director (ONCD) RFI on cyber regulatory harmonization.
