Evaluate, assure information security via HITRUST assessment, oversight

The Health Information Trust Alliance (HITRUST), an organization that supports the health care industry in information protection, has approved Grant Thornton LLP as a HITRUST CSF Assessor.
The CSF Assurance Program delivers simplified compliance with and reporting for multiple regulations including HITECH, HIPAA and state and business associate requirements. The program provides health care organizations and their business associates with security assessments and risk management oversight.

The program utilizes the HITRUST CSF, a comprehensive security framework that incorporates the existing security requirements of health care organizations, and addresses security, privacy and regulatory challenges and risks. HITRUST reports that “the CSF framework is the most widely adopted assessment approach by health care organizations and business associates to evaluate and communicate their information privacy and security posture.”

CSF Assessors are available for health care organizations to assess compliance with security control requirements and document corrective action plans that align with the CSF. With its designation as a CSF Assessor, Grant Thornton is approved to perform assessments and services associated with the CSF Assurance Program and the CSF framework.  

HITRUST’s Chief Compliance Officer Ken Vander Wal expressed his appreciation for Grant Thornton’s participation: “We are pleased to have Grant Thornton as a CSF Assessor to help health care organizations with the process of adopting and utilizing the CSF’s requirements and give their customers confidence in the protection of their information. The company’s long-standing expertise and leadership in health IT privacy and security solutions make it a perfect addition to our program.”

For further information, see “Grant Thornton achieves HITRUST CSF Assessor designation for health care organizations.”