HITRUST i1 Revisions & RDS Introduction
This week, we caught up on some recent HITRUST developments.
HITRUST's new Results Distribution System (RDS) has made it possible for assessed entities to share their HITRUST Assessment results securely and electronically with designated relying parties who can seamlessly view key aspects of the assessment through the RDS portal or by using an API interface with their own TPRM solution. This should greatly streamline the process of sharing confidential Assessment results with customers, prospects, and other interested parties.
The first revisions to HITRUST's i1 framework are on the horizon. HITRUST concluded that adding two new requirement statements to the i1 Assessment would enhance the strength of coverage for MITRE Mitigations M1051 and M1017. Therefore, the two additional requirement statements will be included in i1 Assessments generated based upon the next release version of the HITRUST CSF framework expected later this year.
Lastly, some information about how HITRUST can be leveraged to meet the requirements of the upcoming Cyber Incident Reporting for Critical Infrastructure Act.