Learning Objectives:

• To gain an industry perspective on understating the real-world supply chain risk and assurance challenges faced by organizations with their cloud service providers driving a need to establish an industry-acceptable solution for shared responsibility
• To obtain an understanding of HITRUST’s Shared Responsibility Program as an important initiative to address these top 3 challenges:
  • To ensure a cloud service provider can provide appropriate security and privacy assurances relating to the controls associated with the services their customers have contracted;
  • To supply better guidance on the delineation of control ownership, including clarifying the more nuanced partially shared controls that organizations rely upon; and
  • To simplify the process of customers' own assurance processes by enabling and streamlining control inheritance
• Special preview of the new HITRUST CSF v9.3 and v10 presented by Sarah Phillips, Senior Manager of Standards at HITRUST

Call to Action:

HITRUST is seeking additional Shared Responsibility working group members to participate in a closed peer review of HITRUST’s Shared Responsibility Model and Matrix in November 2019. Details will be provided during the webinar on how to join and participate!

Who Should Attend:

Cloud Service Providers, External Auditors, CISOs, CIOs, Enterprise Risk Managers, Chief Privacy Officers, Supply Chain Management professionals, Chief Procurement Officers, Internal Audit professionals, Third Party Risk professionals