HITRUST launches program to boost cyber security risk management
Kasto80 / iStock
HITRUST has expanded the HITRUST CSF Advisory Council with the addition of key standards and trade associations in order to communicate the broader healthcare industry needs and increase outreach.
The HITRUST CSF Advisory Council coordinates with HITRUST to maintain and improve the HITRUST CSF, ensuring it is aligned with and continues to meet the dynamic information protection requirements of the healthcare industry.
Council members actively advise and make recommendations to HITRUST with respect to the structure and content of the HITRUST CSF and CSF Assurance Program based on their various areas of subject matter expertise and experience, as well as the expertise and experience of their respective constituencies and other stakeholders.
With today’s expansion, the HITRUST CSF said it seeks input and consensus from every healthcare sector where risk management is relevant and ensures that voluntary-industry led privacy and security standards meet the needs of members, patients and practitioners.
“Having been engaged with HITRUST over the past year - communicating requirements, evaluating draft HITRUST CSF updates for usability, and providing feedback to ensure the CSF addresses the needs of physician practices including smaller ones like mine - I am pleased about the opportunity to formally represent the broader physician community in guiding the HITRUST CSF development,” said James Stefan Walker, MD, practicing physician and Texas Medical Association HIT committee member.
HITRUST updates the CSF no less than annually, incorporating changes deemed appropriate to ensure it efficiently and effectively addresses the information privacy and security risks in today’s dynamic operational and threat environment, while also maintaining the numerous authoritative sources harmonized within it.
“Given the widespread reliance on the HITRUST CSF by the healthcare industry and its business associates, HITRUST believes expanding the process for soliciting input and engaging in outreach will ensure the HITRUST CSF and CSF Assurance programs continue to meet the goals for an industry-led security and privacy framework both today and into the future,” said Daniel Nutkis, CEO, HITRUST.
HITRUST, CSF Advisory Council, James Stefan Walker, US