Optiv Security Achieves HITRUST CSF Assessor Designation for Healthcare Organizations

Denver – October 27, 2016 - Optiv Security, a market-leading provider of end-to-end cyber security solutions, today announced that it has received HITRUST CSF Assessor status from the Health Information Trust Alliance (HITRUST). With this designation, Optiv is approved to provide services using the HITRUST CSF, a comprehensive cyber security framework that addresses the multitude of security, privacy and regulatory challenges facing healthcare organizations and their business associates. This achievement enables Optiv to help these companies comply with industry-specific, third-party and government regulations and standards.

“Many organizations entrusted with protecting Personal Health Information (PHI) are mandating that their business associates comply with HITRUST CSF by mid-2017, leaving short timelines and an assessment cycle that can take months to complete,” said Larry Whiteside, vice president of healthcare and critical infrastructure for Optiv. “To achieve compliance as effectively and efficiently as possible, companies need a partner with the right know-how, proven methodologies and procedures, and an extensive understanding of the specific challenges healthcare organizations face. Optiv’s certification as a HITRUST CSF Assessor underscores our expertise in this area.”

"We are pleased to have Optiv as a CSF Assessor to help healthcare organizations with the process of adopting and utilizing the CSF's requirements and give their clients confidence in the protection of their information," said Ken Vander Wal, chief compliance officer, HITRUST. "Optiv’s long-standing expertise and leadership in health IT privacy and security solutions make it a perfect addition to our program.”

As a pure-play cyber security solutions provider with significant governance, risk and compliance experience and HITRUST CSF Assessor designation, Optiv provides healthcare organizations and their business associates with:

• HITRUST certified professionals with an average of 20+ years of security risk expertise.
• Trusted independent advisors who can interview key personnel and conduct technical testing to analyze pertinent aspects of a client’s compliance program.
• Unique assessments that align specifically to clients’ compliance program needs.
• Documentation and corrective action plans for gaps identified during the validation and testing stages.
• Assistance with submitting completed compliance requirements to HITRUST for certification.

In addition to being a HITRUST CSF Assessor, Optiv offers a comprehensive set of services and solutions to help healthcare organizations address and mitigate the risks posed by cyber security threats. Optiv’s healthcare security experts take a comprehensive approach that incorporates people, process and technology to help better define security investment strategies that meet requirements and manage risk. Nearly 60 percent of Fortune 500 healthcare companies have leveraged Optiv to help plan, build and run successful security programs in the areas of third-party risk, cyber threat management, governance and compliance, and identity and access management. Optiv also has the ability to help solve healthcare clients’ problems at the strategic program level, tactical project level and all levels in between. This includes supporting strategy development, identifying needs and matching those with the right solution, delivering the necessary services and solutions, and providing experienced experts to fill gaps in leadership and technical staff positions.

The HITRUST CSF was created to harmonize standards and regulations and takes a risk-based approach specifically for the healthcare environment. As a collaboration between healthcare and information security professionals, the HITRUST CSF aligns HIPAA, HITECH, PCI, COBIT, NIST, ISO, state laws and others into a single assessment. This assessment simplifies compliance, ensures organizations are not overlooking controls and minimizes time spent conducting assessments.