About HITRUST CSF
The Health Information Trust Alliance (HITRUST) Common Security Framework (CSF) is becoming the most widely adopted framework for the healthcare industry in the US. HITRUST CSF was developed to address the multitude of security, privacy and regulatory challenges facing healthcare organizations. By including federal and state regulations, standards and frameworks, and incorporating a risk-based approach, the CSF helps organizations address these challenges through a comprehensive and flexible framework of prescriptive and scalable security controls.
The HITRUST CSF rationalises relevant regulations and standards and provides a common framework specific to the healthcare industry for managing security risks. By applying a single, comprehensive and certifiable framework to harmonise multiple regulations, standards and best practices, organisations can achieve a single assessment that may be reported in multiple ways for an ‘assess once, report many’ approach.