HITRUST CSF readiness assessment
- Assist organisations in assessing their current readiness towards HITRUST CSF certification requirements
- Prepare organisations for the validated assessment
- Assist organisation to establish the baseline of its system compliance and capability
- Identify high risk areas of non-compliance, residual compliance score, and corrective action plans.
HITRUST certification
- Assist organisations in performing a HITRUST CSF validated assessment
- Assist organisations in submitting results to HITRUST for validation and certification
- Perform QA validation and provide responses to QA queries
- Assist organisations in drawing corrective action plan (CAP) and GAP analysis.
SOC 2 + HITRUST report
- Assist service organisations with a SOC 2+ report based on categories as defined by AICPA and additional category by HITRUST
- Opinion on fairness of presentation of description and suitability of design and operating effectiveness of controls based on relevant trust service categories and HITRUST CSF
- Enable organisations to meet the applicable trust services categories and the HITRUST CSF security and privacy criteria in a single report
- Enable organisations to communicate information about their compliance with regulatory requirements and organisation’s controls over protected sensitive information.
SOC 2 + HITRUST report and HITRUST certification
- Assist organisations by performing the necessary testing to express an opinion on the SOC 2 + HITRUST CSF assurance and submit a HITRUST CSF validated assessment and help achieve HITRUST CSF certification
- Tests performed by the service auditor are considered by HITRUST for the HITRUST CSF certification
- Final deliverable is SOC 2 + HITRUST report and HITRUST certification.
