HITRUST Assurance Advisory Adds Strategic Scoping Factors

HITRUST Assurance Advisory Strategic Scoping

Even though compliance is an on-going process, each individual assessment has its own lifecycle, which begins with a self-assessment of scoping factors. This can be a tedious process to complete for every audit, especially if the same questions get asked more than once, or continue to show up in assessment requirements.

Read More

HITRUST Bridge Assessment Offers Relief From Pandemic Pressures

HITRUST Bridge Assessment

HITRUST is granting organizations the ability to gain a 90-day grace period to demonstrate continuous compliance with its new Bridge Assessment.

Read More

Three Healthcare Trends To Watch In 2020 (Electronic Health Reporter)


As we look ahead into 2020, technology will continue to lead to new developments in the ever-changing healthcare industry, but it will also leave room for new threats.

Read More

HITRUST Releases CSF v9.3

HITRUST Releases CSF v9.3

On October 28, 2019, HITRUST released CSF v9.3 which incorporates new privacy and security standards.

Read More

HITRUST Releases Guidance for Reliance on the Work of Others

HITRUST Guidance

On September 11, 2019 HITRUST released updated guidance regarding the reliance of others as part of the HITRUST certification process. This includes a more defined scope for reliance on the results of audits, assessments, and inspections that have been completed in the past.

Read More

HITRUST Changes PRISMA Weights and Scoring Rubric

HITRUST Changes PRISMA Weights and Scoring Rubric_blog

On September 3, 2019 HITRUST announced that they will be updating the HITRUST PRISMA Weights (HAA 2019-007) and the Scoring Rubrics (HAA 2019-009). These new guidelines will go into effect for any HITRUST certifications submitted and accepted on December 31, 2019 or later.

Read More

HITRUST Scoring for Big, Huge, Enormous Dummies

HITRUST Scoring Basics In 2019, HITRUST released an update to the HITRUST Scoring metrics.

Read More

Blockchain: Increasing Security In Telehealth (Electronic Health Reporter)

Increasing Security in Telehealth

While telehealth allows doctors and patients to speak using virtual connections in place of face-to-face visits, the use of the technology raises concerns over data collection.

Read More

HITRUST CSF v9.3 Incorporates New Frameworks, Legislation and Standards


Since 2007, the HITRUST Common Security Framework (CSF) has been recognized as a well-rounded and certifiable security framework for any organizations of all sizes and industries. With the upcoming CSF v9.3 update, HITRUST continues to demonstrate its value for any organization by expanding to incorporate new frameworks, legislation and standards. What is the HITRUST CSF? The HITRUST […]

Read More

Ask Me Anything: A-LIGN’s HIPAA Compliance and Cybersecurity Expert Holds a Reddit Q&A


A-LIGN’s Senior Manager Blaise Wabo recently returned to Reddit to hold another Ask Me Anything (AMA) Q&A session on Reddit’s /r/technology subreddit. Blaise fielded important questions on the state of healthcare security, HIPAA compliance and cybersecurity threats to sensitive health data.

Read More