Developed in collaboration with healthcare and information security professionals, the HITRUST CSF is the most widely-adopted security framework in the U.S. healthcare industry. With the inclusion of federal and state regulations, standards and frameworks such as HIPAA, NIST, ISO and COBIT, the CSF is a comprehensive and flexible framework that remains sufficiently prescriptive in how control requirements can be scaled and designed for healthcare organizations of varying types and sizes. The HITRUST CSF is a standard which has been specifically tailored for the healthcare industry and incorporates both compliance and risk management principles.

The foundation of all HITRUST programs and services is

  • Certifiable standard/framework that provides organizations with a comprehensive, flexible and consistent approach to regulatory compliance and risk management
  • Developed in collaboration with health care and security professionals
  • Has become the most widely adopted framework used within the healthcare industry
  • Backed by Executive Council members from leading healthcare, insurance and pharmacy organizations

Specialized Security Services, Inc. performs HITRUST security assessments to evaluate the risks and compliance state of organizations which create, access, store or exchange sensitive and/or regulated healthcare data.



Thu , 15 Jun 2017

Why Fast Incident Response Is So Important

Cyber attackers are increasingly becoming more sophisticated and attacks more frequent. Organizations of all sizes and sectors are at risk, ... READ MORE >

Wed , 31 May 2017

Canada Is Developing New Cyber Weapons in Response to Global Security Threats

Cyber threats aren’t just coming from super-smart hackers in basements anymore. They can be state-sponsored and far reaching with political ... READ MORE >