HITRUST CSF Assessments: e1, i1, r2—What’s the Difference?

Originally published by BARR Advisory. Written by Kyle Cohlmia. HITRUST CSF is the most widely-adopted cybersecurity framework for healthcare organizations in the U.S. HITRUST CSF provides broad assurance for different risk levels and compliance requirements with greater reliability than other assessment options. There are three types of HITRUST CSF Assessments to consider when deciding what’s best for your organization—the e1, i1, and r2 Assessments.HITRUST recently released CSF version 11, ...

advisory assessment assessments assurance barr advisory compliance csf cybersecurity framework healthcare hitrust options organizations reliability requirements risk types written