Skip to content
← The HITRUST CSF

How can we improve the HITRUST CSF?

The HITRUST CSF: Increased Customization

Categories

JUMP TO ANOTHER FORUM

(thinking…)

in v10: No requirements should dictate scope

In the requirement, "Risk designations are assigned for all positions in the organization", a scope of the whole organization is forced through the wording. In v10, no requirements should dictate scope in and of themselves and should instead be written in such a way that they can be tested to the assessment's scope.

4 votes

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

AdminJeremy Huval (Chief Innovation Officer, HITRUST) shared this idea  ·   ·  Report…  ·  Admin →
How important is this to you?

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment