Get Started

The foundation of all HITRUST programs and services is the HITRUST Common Security Framework (CSF), a certifiable framework that provides organizations with the needed structure, detail and clarity relating to information security tailored to the healthcare industry.

To learn more about the Common Security Framework, HITRUST Central and the CSF Assurance Program, please watch the videos below.

Understanding the CSF

Part 1 of 2: What is the CSF?

Receive an introduction to the CSF, the only all-inclusive security framework available to organizations handling protected health information. (7:26)

Understanding the CSF

Part 2 of 2: Organization of the CSF

Explore the CSF through an overview of the key components, including alternate controls and cross reference of standards and regulations. (4:03)

CSF Proposition and FAQs

Understand the benefits to be had from adopting the CSF, which maintains its relevancy through ongoing collaboration with the industry.


CSF Assurance Program and Tools

Become familiar with the CSF Assurance program and associated tools, which provide organizations with a common approach to manage security assessments.

CHIP Questionnaire

Learn how to complete the CHIP Questionnaire and discover how the results can help assess an organization's security capabilites.

CSF Assessment Portal

Discover how to use the CSF Assessment Portal for conducting a self assessment in order to become CSF Validated via the CSF Assurance program.

Access the CSF

The CSF is available as a PDF through HITRUST Central or with a subscription to MyCSF, a secure, Web-based solution for performing assessments, managing remediation activities, and reporting and tracking compliance.

MyCSF
HITRUST Central

CSF Assurance Program

Learn how the program simplifies compliance assessment and reporting through a common set of information security requirements.

News Events