Hitrust Security Framework

The hitrust csf provides the structure transparency guidance and cross references to authoritative sources organizations globally need to be certain of their data protection compliance.

Hitrust security framework.

Read about the hitrust common security framework here. Hitrust in collaboration with private sector government technology and information privacy and security leaders has established the hitrust csf a certifiable framework that can be used by any organization that creates accesses stores or exchanges sensitive information. It is also for those organizations that plan to leverage the framework and process internally. The course is required for individuals working as part of a hitrust authorized external assessor organization that wishes to provide hitrust and csf related services.

The hitrust csf assurance program combines aspects from common security frameworks like iso nist pci and hipaa. Due to this hitrust csf has become a widely adopted security and privacy framework across industries globally. Download the hitrust csf v9 4 free of charge. Hitrust march 1 2010 2 2 cloud security alliance controls matrix v1 0 joint commission formerly jcaho information management state of nevada nrs 603a hitrust september 10 2010 3 0 cms is ars v1 appendix a high hitrust december 1 2010 3 1 pci dss v2 0 hitrust august 4 2011 4 0 nist sp 800 53 r3 hie wg recommendations.

Hitrust is a privately held company located in frisco texas united states that in collaboration with healthcare technology and information security organizations established the hitrust csf. Hitrust created and maintains the common security framework csf a certifiable framework to help healthcare organizations and their providers demonstrate their security and compliance in a consistent and streamlined manner. Between the csf s 19 reporting domains are 149 control specifications which can each be assessed to one of three implementation levels. The governing body further added that the requests for combining soc 2 and hitrust reports are also.

Hitrust believes these changes are consistent with the letter and intent of the president s executive order on improving critical infrastructure cybersecurity which is to help raise the bar for security and privacy protection in the private sector and improve the nation s resilience to ever increasing cybersecurity threats. Roughly 38 000 common security framework csf assessments have been performed in the last three years. The cost for the certified csf practitioner course is 3 000. The health information trust alliance hitrust is an organization governed by representatives from the healthcare industry.