A SOC 2 is a reporting format, while the HITRUST CSF is a security framework. A SOC 2 examination examines the internal controls at a service organization as they relate to one or more of the Trust Services Principles of Security, Availability, Confidentiality, Processing Integrity and Privacy. The SOC 2 reporting model and the HITRUST security framework are complementary since both are facilitated through the efficient assessment and implementation of controls to satisfy the HITRUST CSF.
Is the HITRUST CSF similar to SOC report requirements?
Updated on December 17, 2017 by John DeCesare
0 Comments
Get started
Get a quote today!
Fill out the form to schedule a free, 30-minute consultation with a senior-level compliance expert today!
Great companies think alike.
Join hundreds of other companies that trust I.S. Partners for their compliance, attestation and security needs.
