Skip to content Skip to navigation

HITRUST Updates Security Framework, Adds Web-Based Tool

December 19, 2012
by Gabriel Perna
| Reprints

According to the Frisco,Texas-based Health Information Trust Alliance (HITRUST), its latest updates to the HITRUST Common Security Framework (CSF), will allow healthcare organization to more easily perform and manage CSF assessments, through a newly-created web-based tool and other upgrades. HITRUST, a collaboration of various healthcare, security, and risk management leaders, has created the CSF for healthcare organizations to “manage their information protection programs.”

The web-based tool, called MyCSF, integrates the CSF with other sources on data security protection and. It also has a customizable view, where healthcare organizations can see various views of the CSF based on multiple factors. HITRUST says this will allow organizations to capture unique risk information for its environment.  

“HITRUST offers comprehensiveness, scalability and simplicity within a single framework - built for healthcare - that is now supported by a full-featured and user-friendly tool that streamlines the CSF assessment and compliance process,” Daniel Nutkis, chief executive officer, HITRUST.

 According to HITRUST, the web-based tool also allows users to create dashboards and reports, based on the information they find, with a drag-and-drop application. The tool also can help organizations compare themselves to others at a “macro-level and a more granular level.”

In addition, the latest version of the CSF will have updates related to Stage 2 meaningful use requirements, and incorporate new standards and regulations, including “NIST SP 800-53 revision 4, Texas House Bill 300, the CORE security requirements, and a mapping to relevant COBIT 5 controls.” HISTRUST also says there have been updates to the CSF in regards to mobile, cloud, encryption, and third-party assurance.

Health IT Summit Series - Focus: CYBER-SECURITY

Get the latest information on Cyber-Security, and attend other valuable sessions at this two-day, intimate event bringing together C-level, physician, practice management and IT decision makers for strategy discussions, knowledge exchange, and one-on-one meetings.

Boston, June 23-24   |   Denver, July 12-13
Topics

News

Study: Data-Driven Physiologic Alarm Parameters Can Help Reduce Alarm Fatigue

July 22, 2016
Alarm fatigue from clinical decision support systems is a significant hazard in hospitals. In a recent study, researchers found that tailoring bedside monitor alarm limits using data-driven physiologic parameters can mitigate alarm fatigue.

New CMS Initiative will Leverage Predictive Modeling to Prevent Heart Attacks and Strokes

July 22, 2016
A new program released by the Centers for Medicare & Medicaid Services (CMS) will aim to decrease cardiovascular disease risk by leveraging data analytics by assessing an individual patient’s risk for heart attack or stroke and applying prevention interventions.

Justice Department, State Attorneys General Sue to Block Anthem, Aetna Deals

July 21, 2016
The U.S. Department of Justice announced Thursday that the department, along with attorneys general from multiple states, filed lawsuits to block Anthem’s proposed acquisition of Cigna and Aetna’s pending acquisition of Humana.

Study: Large Health Systems Investing in Strategic Initiatives to Address Patients’ Social Needs

July 21, 2016
Several health systems have been investing core operating dollars to address the social needs of patients in order to improve overall health outcomes, and are integrating that work into core clinical systems, according to a new study from the Bridgespan Group.

Survey of Health IT Pros Reveals High and Frequent Stress Levels

July 21, 2016
A survey of approximately 500 health IT professionals by HealthITJobs.com has revealed that 55 percent of such professionals are frequently or constantly stressed, and 38 percent say their stress is high or extremely high.

Survey: 74 Percent of Physician Specialties Saw Increased Compensation in 2015

July 20, 2016
Average physician compensation increased 3.1 percent in 2015, with 74 percent of physician specialties experiencing increases, according to the latest AMGA Medical Group Compensation and Productivity Survey.

NCPA Senior Fellow Calls MACRA “A Poor Solution”

July 20, 2016
A report from the National Center for Policy Analysis (NCPA) has assessed that the "doc fix” contained in the Medicare Access and CHIP Reauthorization Act (MACRA) is fiscally irresponsible, and will only increase federal control over how doctors practice medicine.

Report Finds that Ransomware Attacks and Demands are on the Rise

July 20, 2016
The latest research paper on ransomware from the Mountain View, Calif.-based Symantec finds that the disturbing trend has now grown into one of the biggest dangers facing businesses and consumers today.

Rock Health: Digital Health Funding Remains Hot in 2016 Despite Expected Decline

July 19, 2016
The first half of 2016 has concluded with slightly over $2 billion in total digital health venture funding–on track with the levels of both 2014 and 2015, according to a midyear report from San Francisco-based Rock Health.

BREAKING: Justice Department to Challenge Anthem, Aetna Deals, Media Reports Say

July 19, 2016
Antitrust officials at the U.S. Department of Justice may file lawsuits to block health insurer Anthem’s proposed $54 billion acquisition of Cigna as well as Aetna’s pending $37 billion takeover of Humana, according to a Bloomberg article posted Tuesday.

ONC Issues Report to Congress on Policy Gaps for Security, Privacy of mHealth Data

July 19, 2016
The federal government needs to address large gaps in policies around health data access, security and privacy with regard to mobile health apps and health social media, according to a new ONC report issued to Congress.

ONC Announces Phase 1 Winners of Two Health Data Access App Challenges

July 19, 2016
The Office of the National Coordinator for Health Information Technology (ONC) has announced the Phase 1 winners of two app challenges centering around making electronic health data easier to access and use for both consumers and providers.

Survey: Majority of IT Security Leaders Lack Resources Needed to Manage External Cyber Threats

July 18, 2016
External cyber attacks cost organizations $3.5 million a year, but 80 percent of IT security leaders say their defensive infrastructure to identify and mitigate threats are either non-existent, ad hoc or inconsistently applied, cites a Ponemon Institute study.

AMIA Cautions FDA on Use of EHR Data for Clinical Investigations

July 18, 2016
The American Medical Informatics Association says the FDA should not assume that most EHRs are readily configurable for clinical investigations, even among more advanced institutions.

Legislation Introduced To Improve Health IT Infrastructure in Rural Communities

July 18, 2016
Senator Al Franken (D-Minn.) introduced three bills last week that aim to strengthen rural health information technology (health IT) infrastructure in rural communities and also calls for the establishment of quality measures tailored to rural healthcare delivery.

Pages