Showing results for 
Search instead for 
Did you mean: 
No ratings
Archer Employee
Archer Employee

The foundation of all HITRUST® programs and services is the HITRUST CSF, a certifiable framework that provides organizations with a comprehensive, flexible, and efficient approach to regulatory compliance and risk management.

Developed in collaboration with data protection professionals, the HITRUST CSF rationalizes relevant regulations and standards into a single overarching security and privacy framework. Because the HITRUST CSF is both risk- and compliance-based, organizations of varying risk profiles can customize the security and privacy control baselines through a variety of factors including organization type, size, systems, and regulatory requirements.

Updated: July 2022: Version 9.6 includes important modifications to requirement statements and illustrative procedures to support the introduction of the HITRUST i1 Implemented, 1-Year Validated Assessment + Certification. In addition, v9.6 includes refreshed NIST SP 800-53 revision 4 mapping, enabling selection as a compliance factor during the scoping process.

The most important v9.6 updates are establishing current i1 control requirements and developing the infrastructure to facilitate control adjustments in future CSF versions, so users can be confident that i1 assessments will evolve over time to include controls that effectively mitigate active and emerging threats.



This content is available in English only.



Mappings for the HITRUST CSF™ Authoritative Source Content to the Archer Control Standard Library are available in the authoritative source content pack.


Licensing Restrictions

This content requires a license and/or membership in good standing as required by the terms set forth by HITRUST. For more information about licensing, contact HITRUST.

The HITRUST CSF authoritative source content is available with the use of the Archer Policy Program Management use case, the Archer IT Policy Program Management use case, and/or the Archer Assessment & Authorization use case. 


For Additional Support

To learn more about this content, please contact your Account Rep for additional details. For technical support questions, please open a support case.

Was this article helpful? Yes No
Version history
Last update:
‎2022-07-20 02:51 PM
Updated by: