Cyber certification firm HITRUST waives on-site reviews amid COVID-19 pandemic

HITRUST, a leading national organization for certifying cybersecurity practices, has suspended a requirement for on-site assessments of the security and privacy risks at facilities, among other adjustments in the wake of the COVID-19 pandemic that offer guidance for all third-party assessors, according to the company.

These HITRUST adjustments are being made as all industry groups are striving for business continuity during the coronavirus lockdown, with HITRUST allowing “alternative” methods for ensuring cybersecurity compliance during an unprecedented national emergency and amid...