HITRUST released resources that clearly define security and privacy responsibilities between cloud service providers and their customers, thereby streamlining processes for risk management programs.
Developed with AWS and Azure, each new HITRUST Shared Responsibility Matrix aligns with the cloud service provider’s unique solution offering.
Leading cloud service providers have long supported shared responsibility models, whereby the provider assumes some security responsibility for hosting applications and systems, while the organization deploying its solutions in the cloud assumes partial or shared responsibility for others , adding a layer of complexity for broader risk objectives
Scaling cost-effectively to meet customer demand requires us to leverage the cloud, which introduces additional and unique challenges as it relates to data privacy and security. Who is responsible for What is addressed by HITRUST Matrix with addressing risk management challenges
The HITRUST CSF, a certifiable framework that integrates and harmonizes more than 40 authoritative sources, serves as the foundation for the HITRUST Shared Responsibility Matrix with more than 2000 controls
Microsoft’s extensive worldwide presence and partner ecosystem, it is essential to streamline security collaboration. Providing comprehensive coverage for applicable controls across industries and use cases helps ensure that high levels of privacy, security, and compliance are achieved, and nothing falls through the cracks.
The ability to automatically inherit controls saves time, money, and resources as organizations pursue their risk management and compliance objectives. it’s available online
Source : HelpNetSecurity