The Health Information Trust Alliance, more commonly known as HITRUST, is an organization promoting information security best practices that includes comprehensive adoption of health information systems and exchanges. The signature platform of HITRUST is the Common Security Framework (CSF) – a well-known, widely accepted framework accessible any entity that creates, accesses, stores, and and/or exchanges personal health and financial information, such as Personally Identifiable Information (PII).
Learn more about our signature product, the Global Information Security Compliance Packet (GISCP), the world's most complete security policy packet containing over 2,850 + pages of in-depth information security policies, procedures, forms, checklists, templates, provisioning and hardening documents, and much more.
Learn more today about the GISCP by viewing sample policies, forms, hardening documents, and more.
The CSF is a result of a collaborative put forth by numerous industry associations, groups, thought leaders, and other organizations that effectively “harmonizes” requirements of existing standards and frameworks, creating an extremely comprehensive security platform for the healthcare industry.
As for the actual CSF “Control Framework” it includes 13 security control categories comprised of 42 control objectives and 135 control specification within the following categories:
- Information Security Management Program
- Access Control
- Human Resources Security
- Risk Management
- Security Policy
- Organization of Information Security
- Asset Management
- Physical and Environmental Security
- Communications and Operations Management
- Information Systems Acquisition, Development and Maintenance
- Information Security Incident Management
- Business Continuity Management
Security Policies are Critical for CSF Compliance | Download Today
When you look at the actual CSF "Control Framework", it's visibly apparent that a large number of operational and information security policies and procedures will need to be developed. No easy task as taking the time to develop such material is often an arduous and taxing exercise - but it doesn't have to be - all that's needed is the Global Information Security Compliance Packet (GISCP) from Flat Iron Technologies, LLC. Containing literally hundreds of professionally developed and high-quality operational, business specific, and information security material, the GISCP set of documents is a must-have for any organization requiring such extensive policies and procedures, and more.
Information Security Policies | Hundreds More Available
Compliance requirements such as the HITRUST Common Security Framework (CSF) is here to stay - along with many other industry specific mandates - and they all require various forms of policies and procedures, so downlaod the Global Information Security Compliance Packet (GISCP).