HITRUST on the weekends
As part of our journey for the HITRUST RightStart Program, several of us came in to the office on Saturday to push things forward.
After powering up on Startbucks coffee and carb-free snacks, we got to work.
HITRUST Section 16: Business Continuity & Disaster Recovery
We chose a slight different approach this weekend, as we focused on completing an entire control section, rather bounce around the 19 different sections. We split the work between Jonathan Greeley, Tyler Dornenburg, and myself.
Items that stuck out to me were:
- The Business Continuity and Contingency Plan (BCCP)
- Identifying critical business processes required for business continuity
- Identifying BYOD (Bring Your Own Device) inventory
- Making sure backup copies, including content and current location, are properly maintained.
After extended focus, we managed to get through Section 16 before the sun went down in San Francisco.
Founded in 2007, HITRUST Alliance is a not-for-profit organization whose mission is to champion programs that safeguard sensitive information and manage information risk for organizations across all industries and throughout the third-party supply chain.
In collaboration with privacy, information security and risk management leaders from both the public and private sectors, HITRUST develops, maintains and provides broad access to its widely adopted common risk and compliance management and de-identification frameworks; related assessment and assurance methodologies; and initiatives advancing cyber sharing, analysis, and resilience.