Improve IT Security with HITRUST CSF

Presented on:
December 4, 2019 10:00 AM PT
1 hour

Health care organizations are increasingly challenged to protect their networks and systems against cyberattacks and consequent data breaches. The HITRUST CSF® is a comprehensive and certifiable security framework used to protect sensitive information. It provides a robust set of controls that organizations can implement to not only comply with Health Insurance Portability and Accountability Act of 1996 (HIPAA) requirements but also to help discourage further attacks.

Join us for an on-demand webcast to gain a deeper understanding of what HITRUST is and how it can help improve cybersecurity.

We’ll review the following topics:

  • Benefits of HITRUST CSF certification
  • Best practices for compliance and risk-based audits
  • Assessment strategies for identifying potential vulnerabilities


Chris Kradjan, Partner, Moss Adams

Chris has consulted in the information technology field since 1996 and leads the firm’s IT Auditing & Consulting Practice. He is involved with SOC audits for a variety of complex technology-based service organizations and is responsible for related quality assurance. His practice areas also include SOC 1/2/3 audits, IT internal audit, IT co-sourcing, IT security and privacy auditing, strategic technology planning, system selection and implementation, IT governance, internal controls analyses, independent technology assessments, risk management, management coaching and training, technology assessments, procedures and documentation development, and Sarbanes-Oxley compliance services.

Mark Hurst, Partner, Moss Adams

Mark has over 30 years of management consulting experience. He leads the SOC practice for the central region that includes SOC 1/2/3 examinations. He advises all sizes of public and private companies in the design, identification, and testing of internal controls. Mark specializes in IT strategy, IT solution selection, application design of controls, IT assessments, and program and project management. His audit experience includes SSAE18 (SOC reporting), assessment of business application controls, and general computer controls and security. In addition, he has also completed due diligence reviews of information technology environments prior to acquisition. His experience spans the high technology, telecommunications, health care, financial services, energy, and professional services industries.

Raveen Bhasin, Senior Manager, Moss Adams

Raveen has been providing IT consulting and compliance services since 2008. His expertise includes SOC 1 and SOC 2 examinations, PCI and Sarbanes-Oxley (SOX 404) compliance, independent verification and validation (IV&V), post-implementation reviews, IT management consulting services, cybersecurity assessments, and software selection services. Raveen has overseen IT projects in the financial services, technology, manufacturing, oil and gas, and government industries, and for Fortune 500 companies.

Registration Form

Please make sure Javascript is enabled and your browser is up-to-date.


Registration information for this event may be shared with the event's co-hosts, speakers, and sponsors.