HITRUST applauds the President's proposals in the State of the Union Address to encourage increased cyber threat information sharing between the private sector and government.
Since 2007, HITRUST has endeavored to elevate the level of information protection by ensuring greater collaboration between industry and government, and raising the competency level of information security professionals across the healthcare industry. We have tremendous experience as a federally recognized Information Sharing and Analysis Organization (ISAO) and have many valuable lessons to share. In the past, there has been some confusion on who in the private sector companies can turn to in order to work with their government partners. With the steps outlined in the President's State of the Union Address last night, the White House has provided clarity that ISAOs are a key link that will continue to provide value to strengthen our government, our economy, and our nation as a whole given the growing cyber threats the nation faces.
Empowering ISAO's allows each sector to understand the specific needs based on the industry's maturity. HITRUST, as the healthcare industry's leading ISAO, has taken this broader approach to threat intelligence sharing and cybersecurity from the beginning. HITRUST is also a leader in education and outreach. HITRUST's CyberRX attack simulation exercises program is entering its second year and is partnering with industry in over 20 different cities. HITRUST's Common Security Framework (CSF) also incorporates the NIST cyber security framework to ensure the CSF is the healthcare sector's premier framework and also an example for other sectors given its rigorous privacy controls.
We look forward to working with the White House, Congress and the Department of Homeland Security as they continue to foster the formation of private-sector led information sharing as well as existing information sharing relationships between government and the private sector.