What is the HITRUST CSF?
Have you received a letter from a top client indicating that you must become HITRUST CSF certified? Are you looking for a security and privacy framework that leverages other existing security requirements? The HITRUST CSF is a certifiable framework that provides organizations with a comprehensive, flexible, and efficient approach to regulatory compliance and risk management. HITRUST was founded in 2007 and is a not-for-profit organization, created with the belief that information security should support, not impede, information systems and exchanges. The HITRUST CSF was built on the primary principles of ISO 27001/27002 and has evolved to align with a growing number of standards, regulations, and business requirements, including HIPAA, PCI DSS, NIST 800-53/800-171, GDPR, FTC Red Flags Rule, several state requirements, and more.