HITRUST releases cybersecurity 'score' methodology for dealing with third-party vendors

HITRUST, a data protection standards development and certification organization, has announced its Third-Party Risk Management Methodology, which includes a “trust score” based on an organization's cybersecurity practices.

“Today there is no consistent way to determine what information security, privacy, and compliance risk assurances should be provided and maintained when an organization shares sensitive information with a third party, including vendors, suppliers, and business partners,” said HITRUST in a statement issued today. “This creates inconsistencies when organizations seek assurances from their...