HITRUST & HIPAA Security Assessments


Just as Sarbanes-Oxley mandates the integrity of financial data, the Health Insurance Portability and Accountability Act (HIPAA) mandates the security and privacy of personal medical information. With this data increasingly being stored in electronic format, the importance of an assessment performed by a consultative and objective IT resource is greater than ever.

HIPAA compliance isn’t just for health care organizations anymore. Recent expansions have extended compliance requirements to include business associates and entities that handle electronic protected health information (ePHI). If your organization has any interaction with the health care industry, it’s critical that you ensure adequate protections are in place to reduce the risk of unintended exposure of ePHI. Our approved auditors perform HIPAA security assessments and issue HITRUST CSF certification to ensure our clients are in compliance with these standards.


Learn what an information security governance program is and how to implement one to protect your business from cyberthreats.

Health Care IT Security: Implementing Best Practices and Controls Using the HITRUST CSF
we’ll review the benefits of HITRUST CSF certification, best practices for compliance and risk-based audits, and recommended assessments for identifying potential vulnerabilities.

IT security assessments aren’t only useful for warding off potential breaches and hackers but also for creating a competitive advantage. We look at what they address, how the process works, and how often they should be done.

Primary Contacts