Transcription of Risk Analysis Guide for HITRUST Organizations & Assessors
{{id}} {{{paragraph}}}
Risk Analysis Guide for HITRUST Organizations & Assessors A Guide for self and third-party Assessors on the application of HITRUST s approach to risk Analysis February 2018 ContentsPreface ..3 Introduction ..4 HITRUST Risk Management Framework (RMF) ..5 HITRUST CSF Assessments ..7 HITRUST CSF Control Structure ..8 HITRUST CSF Control Maturity Model ..9 Evaluating Effectiveness ..9 Maturity Approach ..9 Adapting Implementation Specifications for Assessment ..13 Evaluating Requirements Statements ..15 Converting Maturity Scores to the Rating Scale ..21 HITRUST Illustrative Procedures ..23 Final Thoughts ..25 About HITRUST ..26 Appendix A: Risk Treatments ..28 Transference .. 28 Avoidance ..29 Mitigation ..29 Corrective Actions Plans .. 29 Alternate Controls ..34 Acceptance ..40 Appendix B: Frequently Asked Questions ..43 Appendix C: Glossary ..47 Risk Analysis Guide for HITRUST Organizations & Assessors 3<< Back to ContentsPreface The HITRUST Common Security Framework (CSF) and CSF Assurance Program provide a consistent, managed methodology for the assessment and certification of healthcare entities and the sharing of compliance and risk information amongst these entities and their key stakeholders.
Risk Analysis Guide for HITRUST Organizations & Assessors A guide for self and third-party assessors on the application of HITRUST’s approach to risk analysis
Domain:
Source:
Link to this page:
Please notify us if you found a problem with this document:
{{id}} {{{paragraph}}}
An Evolutionary Software Project Management Maturity, Management Maturity Model, Management, Maturity model, Portfolio, Programme and Project Management Maturity, Portfolio, Programme and Project Management Maturity Model, Practices: Program and Portfolio Management, Practices: Program and Portfolio Management Maturity Model, An ERM Maturity Model, ITSM Maturity Model, Conducting Effective Project Management Maturity, Conducting Effective Project Management Maturity Assessment, A Health Risk Management Maturity Index, Management maturity, PMO Maturity Assessment