Hitrust Cyber Security Framework

Hitrust health information trust alliance cybersecurity framework addresses the various measures for enhancing security.

Hitrust cyber security framework.

Hitrust has launched a certification program for the nist cybersecurity framework that makes it easier for security teams to report on their implementation of the framework to upper management. As a result hitrust reviewed several cybersecurity related best practice frameworks including the sans 20 critical controls for cybersecurity. This publication was developed in consultation with this sg. Rm sg members who assisted with the review of this guide include.

Hitrust believes these changes are consistent with the letter and intent of the president s executive order on improving critical infrastructure cybersecurity which is to help raise the bar for security and privacy protection in the private sector and improve the nation s resilience to ever increasing cybersecurity threats. Hitrust in collaboration with private sector government technology and information privacy and security leaders has established the hitrust csf a certifiable framework that can be used by any organization that creates accesses stores or exchanges sensitive information. The cybersecurity framework is for organizations of any size in any sector in the critical infrastructure that already have a mature cyber risk management and cybersecurity program that don t yet have a cyber risk management or cybersecurity program with a mission of helping keep up to date on managing risk and facing business or societal threats. Advance the implementation of the cybersecurity framework in the sector and provide a forum for discussion of cybersecurity issues related to risk management among a wide variety of hph sector stakeholders.

With hitrust v9 2 the common security framework csf continues to be a very powerful and useful security framework for any organization both inside and outside the healthcare industry. The framework was developed to cater to the security issues organizations within the health industry face when managing it security. This version integrates the department of defense dod cybersecurity maturity model cmmc version 1 0 standard into the hitrust csf and includes added language to the glossary to better clarify terms found in the framework. October 28 2014 the hitrust common security framework csf is an important tool that healthcare organizations of all sizes can use in their approach to regulatory compliance and risk.