Webinar Recap – HITRUST vs. Other Information Security Frameworks
HITRUST’s April 2021 Community Extension Program concluded yesterday and made for an excellent presentation. As part of the Program, our own Keith Wiley and Mariano Mattei were featured speakers who addressed how the HITRUST Common Security Framework (“CSF”) compares to other commonly accepted frameworks and standards.
Significantly, Keith and Mariano offered a strong argument as to why the HITRUST CSF is better positioned against other options. Here are several key takeaways from their discussion:
HITRUST has evolved the CSF substantially. HITRUST continues to release new versions of the framework, they are delivering on their mission of “One Framework, One Assessment, Globally.” The CSF now incorporates and harmonizes the largest number of authoritative sources of any security and privacy framework, including the European Union’s General Data Protection Regulations (GDPR) along with Singapore’s Personal Data Protection Act (PDPA) within its framework.
The HITRUST CSF is expanding from an industry acceptance perspective. As of late, the Financial Services and Travel and Leisure verticals have been adopting HITRUST as a leader in security certification.
As security and privacy requirements change in response to new and updated global laws and regulations, or breaches and other cyber events, HITRUST is committed to maintaining and expanding the relevancy and applicability of the CSF. The most recent release includes integrating the Department of Defense’s Cybersecurity Maturity Model Certification (CMMC).
Attaining HITRUST CSF Certification enables companies to measure and attest the effectiveness of their own internal security and compliance efforts in a scalable, streamlined manner. Security cannot be overstated in any industry, especially considering the importance of their integrations with their supply chains. It only takes one compromised vendor for access to an entire ecosystem of data.BACK TO BLOGS