Do you need to complete any of the following?
- Onsite Risk Assessment (We will help you prepare and get the highest score possible)
- HITRUST Self Assessment
- HITRUST Validation
- HITRUST Ceritification
There are 10,000 companies that need to be HITRUST certified by the end of 2017, don't wait too long. It is to your benefit to engage us as early as possible!
HITRUST Certification Program
ComplySmart can assist you in becoming HITRUST Certified as inexpensively and quickly as possible.
We are able to assist whether you are ready to immediately pursue HITRUST certification or need some help and guidance to prepare.
Please fill out the information request form on the right for a free 30 minute analysis of your current state of readiness and an explanation of our certification program. We will discuss next steps and provide you with same day pricing.
We've found that many organizations need help to prepare for HITRUST certification and if left on their own it could take a year or two to put everything in place.
Many organizations spend a lot of money and take months to have an assessment performed. At the end of the assessment they have a list of what they are missing, but they aren’t any closer to compliance.
Our HITRUST Certification Program includes the following items which we will integrate with what you already have in place:
- HITRUST aligned policies and procedures document
- All necessary forms and document templates
- Over 25 workflows that your organization can adopt to assist in achieving certification
- Recocommendations on low cost security tools that you may need to put in place to achieve compliance. Examples are listed below:
- Log Management/File Integrity Monitoring
- Security Awareness Training
- Workflow Management System
- Anonymous Reporting Hotline
- Penetration Testing
- Internal, External, and Web Application Vulnerability Scanning
- Asset Management/Unauthorized Connections
- Risk Management System
- Intrusion Detection
- Wireless Scanning
By integrating what you already have and filling any gaps with our tools and templates you will quickly be able to achieve HITRUST certification.
What is HITRUST?
The HITRUST Common Security Framework (CSF), developed in collaboration with healthcare and security experts, is a certifiable, information security framework that provides organizations with an actionable roadmap tailored to the unique needs of the healthcare industry. To date, the HITRUST CSF is the most widely-adopted security framework in the U.S. healthcare industry and has become the de facto standard. For more information on the HITRUST standard go to: www.hitrustalliance.net
Why is it Important to Me?
Becoming HITRUST certified is a significant competitive advantage and is becoming necessary to perform services in the healthcare field. Many healthcare organizations are now requiring their Business Associates/Service Providers that either capture, store, or process Protected Health Information (PHI) to become HITRUST CSF Certified. This is a necessary step to ensure that their Business Associates/Service Providers have established adequate controls to protect PHI and comply with the HIPAA Privacy, Security, and HITECH regulations.
Recognizing the significance of the role played by their business associates when it comes to the protection of health information, leading healthcare organizations, including CVS Caremark, Health Care Services Corp., Highmark, Humana, United Health Group and WellPoint, have announced their commitment to leverage the CSF Assurance Program in their business associate information compliance programs and require the submission of the CSF assessment reports as part of those programs.
Why Should I Use ComplySmart?
As a HITRUST CSF Assessor, ComplySmart provides readiness, certification, and remediation services for healthcare organizations and their business associates to assess compliance with industry security requirements and standards, and create solutions that help organizations align with the HITRUST Common Security Framework (CSF).
ComplySmart offers the following:
- Senior assessors with 20+ years of experience in many industries, not young assessors right out of college
- Senior assessors actually do the work, project is not handed off to junior assessors
- Senior assessors with all of the top industry certifications in security, compliance, and privacy
- ComplySmart works with you until you are compliant and provides guidance along the way, this is not a pass/fail engagement
- ComplySmart provides document templates and advice to help you reach compliance as quickly and easily as possible
- ComplySmart uses a web based collaboration site to manage our projects. This site is used to assign tasks, manage documents, and provide up to the minute project status. This allows you and your staff to work on the project when it is convenient for you not the assessor.