333 results found
-
Buy a report credit in MyCSF
MyCSF should be updated to allow the subscriber the ability to purchase report credits within MyCSF with a check out feature similar to what you have in the HITURST academy.
1 vote -
Automate the validated report agreement countersignature from HITRUST
Please automate the countersignature from HITRUST of the validated report agreement, subscriber should not have to wait 48 hours or more for this to be countersigned.
1 vote -
dennis.palmer@hitrustalliance.net
notifications on document change
1 vote -
Make an Interim assessment published for inheritance to show score changes from CAPs validated as addressed from the valdiated report.
To allow Interim assessments to be "published" for inheritance to show score changes from CAPs validated as addressed and closed OR progress on CAP closure from the orginal valdiated report. This would be advantagous for service providers or clients that rely on vednor/ 3rd party maintaining HITRUST certification and uitilize the portal inheritance feature in the portal to request inheritance on applicable controls based on services being rendered.
1 vote -
1 vote
-
Fine-Grain Assessment Object Reversion
I suggest implementing fine-grain assessment object reversion when subscriber changes (e.g., to requirement scores, NA statements, CAPs, and external inheritance requests) are needed post-submission. Under the current system, it seems that such changes require reversion of the entire object, which then calls for revalidating all requirements (rather than just the updated ones). Fine-grain reversion would support greater assessment efficiency, less rework, and less frustration for subscribers. Also, MyCSF would more accurately reflect workflow status, without resetting the status of previously completed phases/tasks.
1 vote -
Quarterly MyCSF Release Notes
I suggest that HITRUST publishes a quarterly release note digest to summarize changes for users. Under the Release Notes section of MyCSF Help, no new notes have been published since June 2021; yet, MyCSF has changed dramatically (especially regarding workflow and status management) since this time. The digests can be published under the Release Notes section, or (even better) emailed to registered MyCSF users.
1 vote -
change sort order of presets to align with assurance levels
change the left to right sort order of assessment presets to align with assurance provided....r2 should be left, i1 center, e1 right.
1 vote -
Fix Exports so that formatting, particularly numbering, are included in the export
In V11, when exporting controls the language removes all formatting and numbering, making it difficult to trace back actions to the sub-requirements. Given the importance of the list breakdown this should be included ASAP. If the formatting is a challenge due to Excel/CSV, the numbering should still be included.
1 vote -
New Environment test
Azure test
1 vote -
Include dates when files are uploaded
It would be nice to see if we could have dates of when files are uploaded. It can be very confusing when evidence is similar and there is no reference date of when it got uploaded.
1 vote -
Map CSF to COSO Principles
Map CSF controls to COSO Principles in the HITRUST CSF Authoritative Sources Cross Reference
1 vote -
HITRUST Assessment Markup Language
This would allow an assessed entity or assessor to highlight and mark test in documents and automatically create a link to the control requirement statement from which it was accessed and allow them to select the maturity domain that the highlighted text supports. This could also be granular enough to allow it to tie to requirement criteria as defined in illustrative procedures and listed in MyCSF.
1 vote -
Update "Change / Cancellation Policy" section on the Reservation tab
Can you update the "Change / Cancellation Policy" section on the Reservation tab to include the requirement that your submission date cannot be less than 2 weeks before the QA block selected. This requirement is not written out anywhere online but is enforced.
1 vote -
Make it easier to recall or reverse and assessment
It is difficult to reverse an assessment if a domain has been submitted. I am proposing making it easier for a submitter to reverse an assessment if it was submitted in error. Or add functionality so that organizational information can be updated even if a domain has been submitted for an external assessor review.
1 vote -
Selecting filtered inheritance requests should not select ALL inheritance requests
Steps to reproduce: Filter on rejected inheritance requests. Click "select All". Click on "remove" to delete the rejected requests. Poof! All your inheritance requests, even those already approved, will be gone. You can verify this without actually deleting them by clicking over to other views and observing all inheritance requests are selected after just selecting the rejected requests. Recovering from this bug is a manual, time consuming process.
1 vote -
Adding a "LINKAGE" sheet in uploaded Excel workbooks tells MyCSF where to link the sheet throughout the assessment
Linking evidence throughout an assessment is time-consuming. To make it a tiny bit easier, and specifically when adding an Excel file as evidence, MyCSF should look for a LINKAGE worksheet in the uploaded workbook. If found, MyCSF should use the contents of that LINKAGE sheet to know where to link the workbook throughout the assessment.
The contents of the linkage sheet could be as simple as:
• column A: BUID or CVID of the requirement to link the workbook to
• column B: Link to the Policy level (Yes/No)
• column C: Link to the Process level (Yes/No)
• column…1 vote -
support needed
having errors when clicking on details view for myCSF HITRUST controls and details. Please advise if you can see that in logs and how I can document the error.
1 vote -
Ability to inherit just the policy level (or just the policy and process levels)
Add the ability to inherit specific control maturity levels (e.g., just policy, just policy and process). This will be very helpful for internal inheritance, for situations where the same policies are used by the whole organization.
1 vote -
Feedback Forum Usability
Feedback Forum Access not intuitive - trying to get to the main feedback forum page but there is no link and accessing the feedback feature does not allow the user to actually navigate to the broader feedback forum itself. Usability overall for Feedback and CAPs is an issue that results in highly inefficient time usage.
1 vote
- Don't see your idea?