The HITRUST Alliance has appointed Steve Simmons, Director of Compliance at A-LIGN, and Blaise Wabo, Senior Manager at A-LIGN, to the HITRUST CSF Assessor Council. In addition to the council, Steve was selected to serve on the 2018 Quality Subcommittee. The HITRUST CSF Assessor Council, now in its second year, encompasses 20 appointees from a variety of organizations that serve in the information security and privacy industry. The 2018 Quality Subcommittee was created this year to ensure the integrity and reliability of the HITRUST CSF Assessment process, appointing five individuals with a focus on upholding a standard of excellence.
As HITRUST Practitioners, CPAs, and CISAs, Steve and Blaise have extensive experience providing information security auditing and advisory services, that includes performing and managing information technology audit engagements, and information security and privacy compliance assessment services to the healthcare industry.
Moreover, Steve has been an active HITRUST Practitioner since 2015 and for the last year has been an active appointed member of the HITRUST Assessor Council, facilitating ideas and methodologies within the assessor community. Steve currently leads the HITRUST practice for A-LIGN, educating clients on HITRUST CSF updates and the value of combining HITRUST with other audits such as SOC 2.
Blaise is A-LIGN’s designated subject matter expert on HITRUST compliance, assisting in the training and education of our current employees and clients. As a thought leader, Blaise presents on upcoming HITRUST changes and the significance of adopting the HITRUST CSF framework across a variety of industries to utilize for multiple assessment types.
“We are excited to participate on the council again this year and to have been selected as a member of the Quality Subcommittee. The rapid adoption and continued expansion of the HITRUST CSF provide unique opportunities to share our expertise and collaborate with other leaders in the industry. As part of the assessor community, we look forward to collaborating with members of the Quality Subcommittee to provide feedback and knowledge that furthers our efforts to increase the quality and integrity of the assessment reports, and the effectiveness of security and privacy controls to all participants”, stated Steve Simmons.
Founded in 2007, HITRUST Alliance is a not-for-profit organization whose mission is to champion programs that safeguard sensitive information and manage information risk for organizations across all industries and throughout the third-party supply chain. In collaboration with privacy, information security and risk management leaders from both the public and private sectors, HITRUST develops, maintains and provides broad access to its widely adopted common risk and compliance management and de-identification frameworks; related assessment and assurance methodologies; and initiatives advancing cyber sharing, analysis, and resilience.
A-LIGN is one of a limited number of professional services firms that can offer a consolidated approach to information technology and information security audits. We are a HITRUST CSF assessor, Qualified Security Assessor Company, accredited ISO 27001 certification body, accredited FedRAMP 3PAO, and licensed CPA firm. A-LIGN leverages our industry expertise to guide organizations towards security, compliance and privacy services that will enhance their information security to prevent cyber threats, and reduce risk, turning their security into a competitive edge. For more information, visit www.A-LIGN.com.