HITRUST, a data protection standards development and certification organisation, introduced today the HITRUST Assurance Intelligence (AI) Engine™, which uses a patent-pending approach to analyse assessment documentation for oversights, inconsistencies, and errors throughout the information security and privacy assessment process.
The AI Engine adds efficiency to HITRUST’s comprehensive assessment review process by adding a layer of automated checks that complement existing, manual reviews to identify potential issues in assessment reports that might otherwise jeopardise the integrity, accuracy, or consistency of information.
Information risk management and assessment platform
MyCSF SaaS information and assessment platform will incorporate the AI Engine to measurably increase assurances
Effective immediately, the HITRUST MyCSF SaaS information risk management and assessment platform will incorporate the AI Engine to measurably increase assurances delivered through HITRUST CSF Assessments.
Providing real-time feedback to assessed entities and HITRUST Authorized External Assessors allows for more accurate assessment submissions, thereby reducing the time it takes HITRUST’s centralised reporting and oversight function to issue official reports.
HITRUST CSF Readiness Assessment
As the assurances provided by the AI Engine are significantly greater than a traditional self-assessment, HITRUST will refer to these as HITRUST CSF Verified Assessments going forward, which applies to the HITRUST CSF Readiness Assessment.
Additionally, the AI Engine allows HITRUST to expand its portfolio of assessment offerings in the future to provide organisations with assurance reporting options for any business need.
Reliable, efficient assurances
“With the addition of the AI Engine, we can render self-assessments obsolete and continue to pave the way for providing reliable, efficient assurances,” said Jeremy Huval, Chief Innovation Officer, HITRUST.
“I see the AI Engine as having the potential to revolutionize the security and privacy assessment process.”
HITRUST AI Engine
AI Engine’s approach was formulated using data science, artificial intelligence, natural language processing
The HITRUST AI Engine was designed and developed by leveraging HITRUST’s more than 13 years of compliance assessment experience, best-in-class quality assurance methodologies, and data analytics on hundreds of thousands of assessments submitted by organisations of varying sizes, and industries, complexities, and locales.
The AI Engine’s patent-pending approach was formulated using data science, artificial intelligence, natural language processing, and HITRUST’s deep experience in performing assessment quality reviews.
Real-time analysis
During an assessment, the AI Engine proactively identifies potential issues by performing a real-time analysis against thousands of data points across the body of documentation for an assessment.
Through the MyCSF platform, the AI Engine provides detailed descriptions of potential quality issues, the triggering data point(s), and recommended remedial actions.
Accurate information
HITRUST’s continued innovation is exciting and something we look forward to as we submit CSF Assessments"
“HITRUST’s continued innovation is exciting and something we look forward to engaging with as we submit CSF Assessments on behalf of our clients,” said Jonathan Dreasler, Cybersecurity and Privacy Risk Consulting Manager at RSM US LLP – a provider of audit, tax, and consulting services focused on the middle market, and a HITRUST Authorized External Assessor firm.
“I anticipate it will help organisations submit more accurate information and therefore reduce the overall time it takes from the point of assessment submission to HITRUST’s final report issuance.”
Standardised and centralised platform
“The oversight afforded through HITRUST’s CSF Assurance Program provides numerous quality advantages over other assurance programs and certifying bodies, most notably that HITRUST has distributed the assessment fieldwork while standardising and centralisng the platform that is leveraged to provide the assurance and compliance aspects in all HITRUST CSF reporting,” said Bimal Sheth, Vice President of HITRUST Assurance Services.
“Our continued investment in MyCSF enabled the creation of the AI Engine and further streamlines the HITRUST CSF Assurance Program.”
Seamless integration
The HITRUST AI Engine is fully integrated into HITRUST’s assessment quality assurance, oversight, and reporting processes to further strengthen the already best-in-class rely-ability of HITRUST CSF reports, a term used by HITRUST as the ability to rely upon, or trust, the information provided by another.
HITRUST currently has multiple patents pending relating to the AI Engine with the United States Patent and Trademark Office.
- Network / IP
- Industrial security
- Commercial security
- Security management
- Security installation
- Security monitoring system
- Radio frequency Identification
- Video analytics
- Security software
- Security service
- Industrial surveillance
- Integration software
- Cyber security
- Corporate Security
- Data Security
- Security Assessments
- Cloud security
- Artificial intelligence (AI)
- GDPR
- Mergers & Acquisitions
- Machine Learning
