“In addition to assessing current vendors and getting them to agree to be HITRUST CSF Certified for security and compliance, we needed to evaluate new vendors, Our main focus initially was to make certification a requirement for entry into our vendor environment.”
"We can even provide a certification score to prove our level of maturity around the NIST Cybersecurity Framework; that's a feature that most other common frameworks do not provide."