HITRUST designates Booz Allen as Common Security Framework (CSF) Assessor

McLean, Virginia -- Booz Allen Hamilton (NYSE: BAH) has announced that the Health Information Trust Alliance (HITRUST), a leading authority on healthcare information security, has designated the firm as a Common Security Framework (CSF) Assessor.

The CSF, developed in collaboration with healthcare and security experts, is a certifiable, information security framework that provides organizations with an actionable roadmap tailored to the unique needs of the healthcare industry. As a CSF Assessor, Booz Allen will provide information security audits for healthcare organizations, of varying size and complexity, to assess compliance with industry security requirements and standards, and create solutions that help organizations align with the CSF.

"Booz Allen Hamilton understands the new cyber security risks and challenges facing the healthcare industry as it moves toward new models of integrated delivery leveraging digital, mobile, and cloud technologies," Booz Allen Principal Bill Fox said in a press release. “We believe that a robust cyber health strategy must be a fundamental pillar for any healthcare organization and look forward to supporting HITRUST and the healthcare industry as a valued CSF Assessor."

To date, the HITRUST CSF is the most widely-adopted security framework in the U.S. healthcare industry. Booz Allen obtained this designation by demonstrating the firm’s strong healthcare-specific cyber security expertise and commitment to CSF and delivering CSF-related services to the healthcare industry.

"We are pleased to have Booz Allen as a CSF Assessor to help healthcare organizations with the process of adopting and utilizing the CSF's requirements for protecting information," said Ken Vander Wal, Chief Compliance Officer, HITRUST. "The company’s long-standing expertise and leadership in health IT privacy and security solutions make it a perfect addition to our program.”

Healthcare organizations are becoming increasingly reliant on health IT to deliver quality care while bending the cost curve. However, these big changes in the healthcare ecosystem leave personal health information and financial data more exposed, increasing threats to systems and patient privacy.

Booz Allen understands that cyber health’s challenges require a multidisciplinary approach. The firm’s dynamic cybersecurity model, known as CyberM3, helps organizations measure, manage, and mature their cybersecurity programs. The model encompasses not only technology and analytics, but business process engineering and human capital development.

The HITRUST CSF and organization assessments will be incorporated as part of the Booz Allen CyberM3 offering to healthcare clients.

“Cyber health is the cornerstone upon which successful healthcare evolution rests,” said Fox. “Booz Allen stands ready to help our clients achieve the results they need.”

For more information on Booz Allen’s cyber capabilities, please visit: http://www.boozallen.com/consulting/delivering-results-that-endure/cyber

The Health Information Trust Alliance (HITRUST) was born out of the belief that information security should be a core pillar of, rather than an obstacle to, the broad adoption of health information systems and exchanges. HITRUST, in collaboration with healthcare, business, technology and information security leaders, has established the Common Security Framework (CSF), a certifiable framework that can be used by any and all organizations that create, access, store or exchange personal health and financial information. Beyond the establishment of the CSF, HITRUST is also driving the adoption of and widespread confidence in the framework and sound risk management practices through awareness, education, advocacy and other outreach activities. For more information, visit www.HITRUSTalliance.net.