As threats seem to develop faster then the functionalities of healthcare IT solutions it is important to keep cloud security front of mind when making any purchasing or deployment decisions.
Many entities, both government and private have worked to create assessments to help with these decisions, but none has been created that is quite so pervasive, current, and generally accepted as the Health Information Trust Alliance’s Common Security Framework (also known as the HITRUST CSF) assessment.
HITRUST’s CSF Assurance Program is an incredibly thorough evaluation that includes a Baseline Questionnaire of 150-200 questions that pry into an organization’s information security and policies. The questions work not just to determine that policies exist but also to ensure that they are effective and actively managed and monitored as well as uniformly implemented throughout the company.
HITRUST CSF was designed to incorporate federal and state regulations as well as other existing frameworks such as HIPAA, NIST, ISO and COBIT. This varied background has made HITRUST CSF the most widely adopted security framework in the U.S. healthcare industry including organizations as diverse as AT&T, Deloitte, and PWC. Additionally an increasing number of healthcare organizations, including Highmark, Humana, and UnitedHealth Group are now requiring that their business associates obtain CSF Certification.
UltraLinq’s dedication to security and safety made the decision to complete the assessment an easy choice, and we are pleased to announce that we have successfully completed our HITRUST CSF certification.