The Health Information Trust Alliance (HITRUST) is a collaboration of healthcare, business, technology, and information security leaders. HITRUST believes that information security should not be an obstacle to the adoption of health information systems and exchanges.
HITRUST has established a certifiable framework, HITRUST CSF, that is available to organizations that are required to protect personal health information (PHI) and financial information. The purpose of the CSF is to bring together the requirements of existing standards and regulations. The current list of regulations on the HITRUST website includes federal (HIPAA, HITECH), third-party (PCI, COBIT) and government (NIST, FTC).