An Overview of the HITRUST CSF and Related Frameworks

The HITRUST CSF is a comprehensive, certifiable security framework that pulls from HIPAA/HITECH, ISO 27001, NIST SP 800-53, COBIT, and PCI DSS, combining them to create a powerful framework. The HITRUST CSF provides an integrated, prescriptive framework that works with the needs …

Read More

HITRUST Assessment Types & HITRUST Integration with SOC 2

Don’t make the climb to compliance more difficult than it has to be. With a comprehensive framework for organizations of any size, system or regulatory requirement, the HITRUST CSF allows for organizations to easily assess their current compliance while providing implementation requirements based on an organization’s risk …

Read More

Understanding the HITRUST Specification and Scoring

HITRUST’s Risk Management Framework In order for an organization to better assess potential risks and create safeguards for adequate protection of potentially sensitive information, HITRUST has created a comprehensive risk management framework that supports a basic 4-step process: Identify risks and define the protection requirements Specify controls Implement and manage …

Read More

More Passwords, More Problems: A Look into Biometric Authentication

What’s your password? Studies show that you likely use more than 15 different passwords, but more than half of you admit to using a weak password. So how do companies fare with inconsistent password usage and standardization? Even companies with incredible security practices can become vulnerable due to a forgetful employee who …

Read More

A-LIGN’s Commitment to the Community this Holiday Season

The spirit of giving gave back this holiday season! For the third consecutive holiday season, A-LIGN donated more than $10,000 in 2015 to charities ofour clients’ choosing through Charity Gift Certificates.  While everyone always enjoys receiving holiday chocolates or a bottle of wine, A-LIGN has chosen a different route …

Read More

2015 Data Breaches – The Year In Review

Author: Greg Johnson, Vice President of Business Development at A-LIGN. Data breach was alive and well in 2015 with some of the largest breaches in history occurring last year. The Office of Personnel Management (OPM), or in other words our Federal Government, was hacked to the tune of 21.5 million …

Read More

The Challenges Facing Healthcare & How HITRUST Can Help

The Healthcare industry currently faces strict regulatory needs, causing many challenges when considering the options for risk management and mitigation. These challenges include but are not limited to: Inconsistent implementation of acceptable minimum controls. Inefficiencies associated with varying interpretation of control objectives and safeguards. Increasing scrutiny from regulators, auditors, underwriters, …

Read More

The Do’s and Don’ts of Bridge Letters (SSAE 16 Reporting)

You finally received your SOC 1/SSAE 16 report, only to realize that your coverage does not cover the entire year. So what happens in the remaining months of the year beyond the coverage of the report? Is it necessary that you receive another report to cover the remainder of the …

Read More

CFPB, the Automotive Industry, Technological Services and Beyond

Who needs to be prepared for the CFPB exam and who does it affect? The Consumer Financial Protection Bureau (CFPB) Exam is an extensive audit to supervise consumer finance markets including: Banks Credit unions Financial agencies Debt collection agencies However, financial institutions are not the only ones that need to …

Read More

Provide Peace of Mind to Lenders and Consumers with the A-LIGN Difference

The A-LIGN Difference = Peace of Mind + Trusted Advisor + Competitive Advantage Most lenders/stakeholders now ask title insurance and settlement companies to demonstrate compliance with ALTA’s Best Practices. There exists a lot of uncertainty and confusion in the industry as to how a title insurance and settlement company can …

Read More