Practical application backed by industry expertise.

Take security efforts to the next quality level with the Health Information Trust Alliance (HITRUST) Common Security Framework (CSF). As a designated HITRUST CSF Assessor, Wipfli teams assess client information security programs against industry standards as well as regulatory and state statutory requirements (i.e., HIPAA, HITECH, PCI, COBIT, NIST, and CMS) using the CSF. Wipfli experts can help develop a roadmap for the organization to pursue CSF validation or certification. Wipfli teams can perform risk assessments and demonstrate compliance with all of the regulatory security requirements facing health care organizations and business partners today. Assess your business partners using the CSF to ensure they are meeting compliance requirements. 

Featured Expertise

Paul J. Johnson, CISSP, CCSFP, CPA

Paul Johnson works with clients to assess, improve, and test their information security and risk management systems. He also helps clients determine their compliance with health care security requirements including HIPAA and HITRUST.

Featured Insight

What You Should Know About Using AWS, Azure, and Other Third-Party Tools

This 4-part article series explores features of these third-party tools that can help address the assurances required across the 19 CSF assessment domains. Read Part 1. Read Part 2. Read Part 3.

Featured Insight

Attention Vendors: 5 Reasons to Start Your Path to HITRUST Certification Now

There are five big reasons now is the best time to start moving toward the new CSF program. 

HITRUST Partner Program

Although our HITRUST services can be tailored to meet your organization's specific needs, the Partner Program approach simplifies the path to implementing the HITRUST CSF and achieving certification.