Wipfli named to HITRUST CSF Assessor Council

Wipfli has been selected to the HITRUST CSF Assessor Council, a high-profile group comprised of a few Assessor firms that provide oversight.

Wipfli has been a HITRUST assessor since 2013, and has since positioned the firm as a go-to resource for HITRUST services. Wipfli was appointed midway through the term — an unusual move, but a special case was made due to the firm being a great proponent, particularly Paul Johnson’s efforts and involvement with HITRUST. Paul and Karen Johnston will serve as Wipfli representatives on the council which represents a broad range of experience in information security and privacy. Last year, Paul was selected to serve on the HITRUST Assessor Marketing Council. Karen moved into the HITRUST services area in 2015 and is a key leader in the HITRUST practice. She has served as an engagement manager for HITRUST projects and oversees the team’s resource management process. She is also very active in the group’s business development activities.

Paul and Karen are critical to helping identify and recommend information security and privacy standards that are core to complying with the HITRUST CSF program. They provide trained resources to organizations of varying size and complexity to assess compliance with security control requirements and document corrective action plans to align with the HITRUST CSF.

Since it was founded in 2007, HITRUST has championed programs that safeguard sensitive information and manage information risk for global organizations across all industries and throughout the third-party supply chain. In collaboration with privacy, information security and risk management leaders from the public and private sectors, HITRUST develops, maintains and provides broad access to its widely-adopted common risk and compliance management frameworks, related assessment and assurance methodologies.

Read the full press release here.