A Health Information Trust Alliance Common Security Framework (HITRUST CSF) assessment is your solution.
The HITRUST CSF is the framework adopted by the healthcare industry.
Lurie, LLP is a certified external assessor (Approved HITRUST Assessor) that can assist in integrating the HITRUST standards into your current cybersecurity program – or assist in creating a new one.
What is the HITRUST Framework?
The HITRUST Framework addresses potential cybersecurity risks.
The framework includes
METHODOLOGIES
METHODOLOGIES
PROCESSES
PROCESSES
PROCEDURES
PROCEDURES
that align business policies and technology solutions in organizations.
Solutions have to identify needed improvements and must:
Be aligned with business goals
Address performance
Be flexible
Be repeatable when required
Provide a cost- effective approach
Your Lurie Advisors are uniquely qualified to provide HITRUST services. Certified by the HITRUST organization – a prerequisite for delivering these services to you - advisors highly experienced in cybersecurity issues are dedicated to creating the most appropriate framework for you. With your goals and concerns as guidance we investigate risks and provide cost-effective solutions.
Who needs HITRUST services?
- Organizations dedicated to managing risk in cybersecurity.
- Organizations of any size.
- Organizations that already have a cybersecurity program.
- Organizations that do not yet have a cybersecurity program.
IDENTIFY
What assets need protection?
PROTECT
What safeguards are available?
DETECT
What techniques can identify risks?
RESPOND
What techniques can address the impact of the risks?
RECOVER
What techniques can restore the affected capabilities?
Source: HITRUSTalliance.net
Our HITRUST certification and the wide range of Lurie services always allow us to customize a solution to meet your specific your needs. Many clients start with the identification of the cyber issues to assist in understanding existing risks.
Kate M. Siegrist, CPA, CISA, CRISC, HITRUST CCSFP
Kate Siegrist leads Lurie’s growing technology practice and consults with business owners to help improve their security, compliance, and technology controls posture. As a partner, she oversees the firm’s HITRUST, SOC 1, 2 and 3 practice, security assessments, IT strategic planning services, IT risk assessments, IT governance assessments, business and systems transformations, and controls audits. Kate has been a featured speaker on technology and controls topics relevant in this rapidly evolving arena.