HITRUST assessment and certification

Connect with us

The Health Information Trust Alliance (HITRUST) provides a certifiable information security framework (CSF) that supplements existing framework controls with industry insights and best practices to provide clarity and consistency lacking in many standards and regulations. This normalization of processes allows you and your vendors to conduct a single assessment while meeting the requirements of multiple compliance initiatives.


Effectively manage risk, meet compliance requirements and improve data protection

As one of the original HITRUST CSF Assessor firms, Coalfire is uniquely positioned to provide guidance and insights gleaned from years of interaction with HITRUST, and organizations that have undergone HITRUST CSF certification. Our expertise includes:

  • Streamlining HITRUST CSF and Electronic Healthcare Network Accreditation Commission (EHNAC) controls with the migration of HIPAA security/privacy modules within EHNAC accreditations to the HITRUST CSF framework.
  • Saving clients up to 40% in time, cost, and security team productivity through Coalfire Controls, an AICPA-member firm that performs SOC audits in conjunction with HITRUST assessments.
  • Sharing cybersecurity industry best practices through event presentations, webinars, case studies, and white papers.

Why you should consider HITRUST

  • You’re a service provider that received a letter from a customer requiring HITRUST CSF certification.
  • You’re an organization looking to improve your overall risk management program and security posture.
  • You’re a service provider that wants the most prescriptive approach to protecting customer data, and therefore, be able to use security as a competitive differentiator that can increase revenue.
  • You want a framework that includes, harmonizes, and cross-references existing, globally recognized standards, regulations, and business requirements – including HIPAA, HITECH, NIST, ISO, PCI, FTC, COBIT, and GDPR – and scales controls according to the type, size, and complexity of an organization.

Our services include:

  • HITRUST workshop
  • HITRUST CSF FastTrack toolkit 
  • HITRUST CSF gap assessment
  • HITRUST CSF facilitated self-assessment
  • HITRUST CSF validation/certification
  • HITRUST CSF interim assessment
  • HITRUST CSF continuous monitoring
  • HITRUST CSF bridge assessments
  • HITRUST-SOC coordinated assessments
  • HITRUST CSF third-party risk management program
  • HITRUST CSF certification marketing support
  • Healthcare risk analysis and advisory

Why choose Coalfire as your HITRUST partner?

  • We are one of the original HITRUST assessor firms with more than 35 certified HITRUST CSF practitioners delivering hundreds of engagements.
  • We are one of few assessor firms appointed to the HITRUST Assessor Council two years in a row based on qualifications and experience as a CSF Assessor organization.
  • We have a streamlined methodology to assist organizations with cyber risk programs that are in sync with the HITRUST CSF certification requirements.
  • Our pre-certification services help you fully understand, and gain clarity into, the HITRUST CSF lifecycle so you can reduce time, costs, and resources and prepare your organization for success.

Showcase your security posture

See a return on your compliance investment and grow market share with our market development services

Learn more
Top