The Healthcare Sector Cybersecurity Framework Implementation Guide

HITRUST developed this document in consultation with the Healthcare and Public Health (HPH) Sector Coordinating Council and Government Coordinating Council, along with input from other sector members and the U.S. Department of Homeland Security Critical Infrastructure Cyber Community. The goal of this guide is to help HPH Sector organizations understand and use the HITRUST Risk Management Framework—consisting of the HITRUST Cybersecurity Framework (CSF), CSF Assurance Program, and supporting methodologies—to implement the National Institute of Standards and Technology CsF in the HPH Sector and meet its objectives for critical infrastructure protection.