Rsam Supports HITRUST with Delivery of MyCSF, a Multi-tenant Cloud Solution for Automating CSF Assessments & Managing Compliance

Share Article

Rsam to deliver an enhanced web-based tool for accessing the HITRUST Common Security Framework (CSF) and automating CSF assessments.

News Image
We believe there is a tremendous need for benchmarking in the healthcare industry, and this new tool enables that need to be met.

Rsam, an industry leading provider of Governance, Risk, and Compliance (GRC) solutions, today announced HITRUST has licensed the Rsam Platform to deliver an enhanced web-based tool for accessing the HITRUST Common Security Framework (CSF) and automating CSF assessments.

MyCSF, a HITRUST owned and managed service leveraging the Rsam GRC platform, provides online access to the CSF and enables organizations to automate core processes related to conducting CSF assessments. Because MyCSF leverages the power of a GRC platform, organizations benefit from the advanced functionality it provides such as identifying compliance gaps, better scoring and prioritization of risks, superior workflow with remediation tracking, role-based dashboards, and CSF assessment reports.

The HITRUST CSF is the most widely adopted framework in the U.S. healthcare industry, aiding organizations in information protection and compliance management. In the past year, Rsam has been successfully helping organizations leverage the CSF within their GRC process while bringing a high degree of centralization and automation to the process.

The new tool solves a critical need for those organizations that may not require a full-scale GRC platform or want the unique assessment approach HITRUST has developed. Because it is built upon the power of GRC, organizations reap the benefits of a more managed, dedicated and comprehensive solution allowing them to move away from managing sensitive data in spreadsheets. MyCSF provides a simpler, more focused solution for CSF integration and automation. The Rsam platform, which powers MyCSF, provides organizations with more flexibility in adapting and scaling the CSF to their environment over past and alternative approaches.

“We are very pleased to continue our relationship with HITRUST,” says Vivek Shivananda, CEO of Rsam. “Working with HITRUST to deliver an enhanced, web-based CSF experience will add significant value to the healthcare industry. MyCSF will also provide true and meaningful benchmark data to the healthcare industry. We believe there to be a tremendous need for benchmarking in the healthcare industry, and this new tool enables that need to be met.”

Combining Rsam’s powerful technology and HITRUST’s healthcare industry expertise to create MyCSF will bring about:

  • Fully viewable and searchable online access to the complete HITRUST CSF
  • Automated workflow and notifications that will provide greater efficiency and accuracy over Excel spreadsheets and alternative solutions in conducting CSF assessments
  • Powerful workflow and remediation tracking
  • Role-based dashboards and reports with intuitive drag and drop interfaces

“This relationship is part of Rsam’s overall growth strategy to white-label and OEM the Rsam platform to leading content/service providers, reaching a broader audience with targeted cloud-based solutions at an affordable price point,” comments Mr. Shivananda.

About Rsam
The Rsam GRC Platform is a widely deployed IT GRC solution and E-GRC platform that empowers a wide variety of customers and verticals, including a strong presence among healthcare organizations and healthcare regulators. Since 2003, Rsam has been successfully implemented at hundreds of organizations and government agencies to help them effectively identify, assess, manage and mitigate risks, while providing enterprise-wide visibility, oversight and assurance. Rsam’s modular solutions streamline the GRC process while reducing costs in the areas of Assessments, Audit, Compliance, Enterprise Risk, Incident Management, Issues & Remediation, Policy Management, Threat & Vulnerability and Vendor Risk.

The Health Information Trust Alliance (HITRUST) was born out of the belief that information security should be a core pillar of, rather than an obstacle to, the broad adoption of health information systems and exchanges. HITRUST, in collaboration with healthcare, business, technology and information security leaders, has established the Common Security Framework (CSF), a certifiable framework that can be used by any and all organizations that create, access, store or exchange personal health and financial information. Beyond the establishment of the CSF, HITRUST is also driving the adoption of and widespread confidence in the framework and sound risk management practices through awareness, education, advocacy and other outreach activities.

*HITRUST, CSF and MyCSF are trademarks of HITRUST Alliance, LLC.

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Alla Valente
(201) 867-1032
Email >