Why HITRUST CSF needs NIST CSF
I recently attended a HITRUST webinar titled "How HITRUST Provides NIST Cybersecurity Framework Certification"
In Q&A someone asked why they would offer NIST CSF in addition to HITRUST CSF. The answer was many managers and directors in healthcare demanded additional proof of compliance and the NIST CSF was deemed as higher proof than the HITRUST CSF
My question would be, why pay tens of thousands for HITRUST CSF and then more for NIST CSF if the NIST CSF alone would do the job.
We offer our Jumpstart program for a much lower cost because we deliver it through a SaaS method and it does not require high priced consultants traveling at the clients expense. You get HIPAA compliant on the NIST CSF with policies written specifically for the NIST CSF. This method also allows us to deliver quarterly NIST CSF risk assessments as proof of your on-going HIPAA compliance.
If you would like to see how Jumpstart can get you HIPAA compliant on the NIST CSF for a fraction of the cost of HITRUST CSF send me an email to firstname.lastname@example.org