Search
Related topics are listed below.
External Inheritance
Inheritance » External Inheritance
External Inheritance allows users to “inherit” assessment results that are shared by the same or different organizational entity. Access and use of external inheritance is subject to the following requirements and available functionality: The owner of the…
Inheritance
Inheritance
Inheritance is a feature within MyCSF that allows maturity level scores associated with specific requirements to be transferred, or “inherited”, from previously scored assessment objects. Maturity scores that originated from an “inheritable” assessment…
How To Delete External Inheritance Requests
Inheritance » External Inheritance » Inheritance Requestors » How To Delete External Inheritance Requests
Follow the same steps in 8.1.3 for deleting internal inheritance requests. 1. Locate the Inheritance Request in the Inheritance modal, then click on the trash can icon to delete. 2. Confirm the removed. 3. The request has been deleted.
How To Apply Approved External Inheritance Requests
Inheritance » External Inheritance » Inheritance Requestors » How To Apply Approved External Inheritance Requests
1. From anywhere within the Assessment view, go to the ‘Inheritance’ request page by clicking on the ‘Inheritance’ link located on the left-hand side panel after the ‘Documents’ section. 2. From the ‘Inheritance’ request page, click on the…
Internal Inheritance
Inheritance » Internal Inheritance
Internal Inheritance allows users to “inherit” assessment results that are shared by the same internal organizational entity. Access and use of internal inheritance is subject to the following requirements and available functionality: The owner(s) of both the…
How To Create External Inheritance Requests by Requirement
Inheritance » External Inheritance » Inheritance Requestors » How To Create External Inheritance Requests by Requirement
1. From the Assessment Domain, expand the requirement statement view and click on the ‘Inheritance’ button to open the Inheritance Modal window. 2. From the ‘Requests’ tab within the Inheritance Modal, select ‘External’ from the drop-down for the…
How To Submit External Inheritance Requests for Approval
Inheritance » External Inheritance » Inheritance Requestors » How To Submit External Inheritance Requests for Approval
1. From anywhere within the Assessment view, go to the ‘Inheritance’ request page by clicking on the ‘Inheritance’ link located on the left-hand side panel after the ‘Documents’ section. 2. From the ‘Inheritance’ request page, click on the…
How To Request Inheritance Using the Offline Assessment Template
Inheritance » External Inheritance » Inheritance Requestors » How To Request Inheritance Using the Offline Assessment Template
To create inheritance requests using the offline assessment, first generate the offline assessment worksheet using the process outlined in the Creating an Offline Assessment section of the User Guide. Locate and click the “Inheritance” tab in the Offline…
Completing an Assessment
Assessment Questionnaire » Completing an Assessment
There are many components to completing an assessment. This includes: Answering an Assessment Statement, Assigning Respondents, Related Authoritative Sources, Risk Factors, History Statement Log, Illustrative Procedures, Adding a Document, and CAP Management. …
Offline Assessment – Inheritance
Assessment Questionnaire » Completing an Assessment » Offline Assessment – Inheritance
The Offline Assessment feature may be used to populate inheritance requests. For more information refer to the following link: How to Request Inheritance using the Offline Assessment Template
External Reports
Analytics » Reports » External Reports
These reports are available for subscribers to view their MyCSF Scoping Information as well as Documents, CAPs entered, Maturity Scores, and the state of your Assessment in the ‘QA Progress Report’. Internal Reports After authenticating through the…
How To Delete Internal Inheritance Requests
Inheritance » Internal Inheritance » How To Delete Internal Inheritance Requests
1. From the Assessment Domain, expand the requirement statement view and click on the ‘Inheritance’ button to open the Inheritance Modal. 2. Within the Inheritance Modal, go the ‘Requests’ tab and select ‘Internal’ from the drop-down. 3. Click…
Completing your Internal Assessor Time Sheet
Internal Assessors » Completing your Internal Assessor Time Sheet
Like External Assessors, Internal Assessors are obligated to document both the individuals who performed Internal Assessor duties on the Assessment as well as the hours they each committed. On the sidebar, click the ‘Internal Assessor Time Sheet’ label to be…
Applying to be an Internal Assessor
Internal Assessors » Applying to be an Internal Assessor
Internal Assessors are those personnel who facilitate the CSF Assessment process by performing in-house testing in advance of an External Assessor’s validated assessment fieldwork. Internal Assessors are part of an “Internal Assessment Function.” This function…
How To Create/Apply Internal Inheritance Requests
Inheritance » Internal Inheritance » How To Create/Apply Internal Inheritance Requests
1. From the Assessment Domain, expand the requirement statement view and click on the ‘Inheritance’ button (yellow underline) to open the Inheritance window. 2. From the ‘Requests’ tab within the Inheritance window, select ‘Internal’ from the…
Submitting External Assessor Reverted Controls Back to the External Assessor
Assessment Questionnaire » Submitting an Assessment » Submitting External Assessor Reverted Controls Back to the External Assessor
When an External Assessor reverts an Assessment Statement back to their client, the returned Assessment Statement will display a “Response Needed for External Assessor” status. To address these Assessment Statements, you as the client will need to do the…
How To Use the Kanban View To Track Inheritance Requests
Inheritance » External Inheritance » Inheritance Requestors » How To Use the Kanban View To Track Inheritance Requests
The Kanban reporting view can be used to confirm the submitted inheritance requests. Find the Kanban board by: 1. Clicking the Views option in MyCSF and selecting the Kanban View. 2. Then filter for the assessment object name. Hovering over the assessment tile…
Request a Revision for an Issued Report
Reports » r2 and i1 Assessments » Request a Revision for an Issued Report
If you have discovered a spelling error or any type of inaccuracy in your ‘Draft Report’, you can request a revision by pressing the ‘Request Revision’ button. You will be able to place your comment in a text box that you can send to the HITRUST Assurance…
First Login and Authentication
HITRUST Portal » Logging in to the HITRUST Portal » First Login and Authentication
If this is your first-time logging into the HITRUST Portal, follow the steps below to locate and change the temporary password associated with your MyCSF Account. Locate the email with the subject line: “HITRUST Login Registration – Account Lead Created” from…
Viewing Notifications and Tasks
Homepage » Viewing Notifications and Tasks
Tasks can be assigned to anyone with access to MyCSF. Provision tasks to anyone that you may feel will be an asset to completing your Assessment. From the MyCSF Homepage, there is a ‘Your Notifications’ component positioned on the right-hand side of the view.…
Linking Statements and Documents
Assessment Questionnaire » Completing an Assessment » Creating an Offline Assessment » Linking Statements and Documents
If you have documents in your Document Repository and/or have added new documents in the excel spreadsheet, you have the ability to link them to your Assessment Statements. *Please note that Account Admins, Assessment Leads, and Assessors can do the below. 1. From…
r2 and i1 Assessments
Reports » r2 and i1 Assessments
Report creation and distribution for i1 and r2 assessments follow the same workflow in MyCSF: Downloading the Report Request a Revision for an Issued Report Approving a Draft Report
Contacts and Documents Report
Analytics » Reports » Internal Reports » Contacts and Documents Report
Administrative Details and Factors Report
Analytics » Reports » External Reports » Administrative Details and Factors Report
Contains information input into the “Administrative Details and Factors” of the HITRUST CSF Assessment. Administrative Details and Factors Report After authenticating through the ‘MyCSF Portal’, click on ‘Analytics’ in the top Menu…
MyCSF Compliance and Reporting Packs
Analytics » MyCSF Compliance and Reporting Packs
MyCSF Compliance and Reporting Pack for HIPAA Step 1: Create a readiness, validated, or targeted assessment using v9.5.0 or later which includes the HIPAA breach notification rule and/or HIPAA security rule. Step 2: Go to Analytics > Compliance Packs > Select…
Attaching the Organizational Overview and Scope
Documents » Attaching the Organizational Overview and Scope
Uploading the details on the ‘Scope of Your Assessment’ along with the information regarding your ‘Company Profile’ can be placed here. 1. On the sidebar, click the ‘Organizational Overview & Scope label to be rushed to the Organizational Overview & Scope…
Creating and Importing Assessor Evaluation for an Offline Assessment
Assessment Questionnaire » Completing an Assessment » Creating and Importing Assessor Evaluation for an Offline Assessment
When a Validated Assessment has been submitted to an Assessor, you the Assessor has the ability to fill-out your evaluation outside of MyCSF using a spreadsheet and seamlessly import your evaluation back into the application. Follow the instructions below on Creating…
Internal Assessors
Internal Assessors
Organizations, that are capable of demonstrating proficiency within their Internal Audit departments, are permitted to test their own Requirement Statements and enable their External Assessor to rely on the results. Click here to learn more. Sub-topics Applying to…
How To View Externally-Inherited Assessment Scores
Inheritance » External Inheritance » Inheritance Requestors » How To View Externally-Inherited Assessment Scores
1. From the Assessment Domain, expand the requirement statement view and click on the ‘Inheritance’ button to open the Inheritance Modal. 2. Within the Inheritance Modal, click on the ‘Scoring’ tab. The first line shows the external assessment from which…
How To View Internally-Inherited Assessment Scores
Inheritance » Internal Inheritance » How To View Internally-Inherited Assessment Scores
1. From the Assessment Domain, expand the requirement statement view and click on the ‘Inheritance’ button to open the Inheritance Modal. 2. Within the Inheritance Modal, click on the ‘Scoring’ tab. The first line shows the internal assessment from which…
Assessment Questionnaire
Assessment Questionnaire
After completing the Scope of your Assessment, you can begin answering the questions that have been generated based on your scope. Topics range from: Completing an Assessment, Marking Not-Applicable, Assigning a User, CAP Management, Authoritative Sources, Assessment…
Enabling Internal Assessors On Your Assessment
Internal Assessors » Enabling Internal Assessors On Your Assessment
After your Internal Assessor application has been approved, the Name and Security page on your Organization’s Assessment will be altered to include a checkbox allowing you to mark your Assessment as having been tested by Internal Assessors. When selected, you will be…
Assessor Timesheet
Documents » Assessor Timesheet
Required for all Validated Assessments, assessor organizations must record all individuals that assisted with the submission of the assessment. External Assessor Time Sheet 1. On the sidebar, click the ‘Time Sheet’ label to be rushed to the Time Sheet page.…
Reservations
Reservations
Starting July 1, 2021, all validated i1 and r2 assessments within MyCSF will require a reservation with our Quality Assurance team prior to submission. Completing a reservation can be done in a few simple steps. Viewing a Reservation Sub-topics Making a…
Library Retention
Pre-Assessment » Scoping an Assessment » Library Retention
The Library Retention feature provides visibility into specific changes associated with HITRUST CSF version updates, and allows users to apply those changes to assessment objects created under previous versions of the framework. To begin the update process, open an…
Submitting an Assessment
Assessment Questionnaire » Submitting an Assessment
Whether submitting a Self-Assessment or a Validated Assessment by your assessor organization, the Assessment Questionnaire can be submitted either by each fully completed domain (Validated only) or by completing the entire Assessment (Self-Assessment/Validated…
How to Publish (Enable) Assessment Inheritability
Inheritance » External Inheritance » Inheritance Providers » How to Publish (Enable) Assessment Inheritability
From the ‘Name & Security’ pre-assessment page, check the box next to “Published” and click Confirm when prompted to agree to the Inheritance User Terms and Conditions. A published assessment will show a banner icon with a hover-over tooltip next the…
Assessments
Analytics » Dashboards » Assessments
Here in the ‘Assessments’ tab, view statistics about each ‘Assessment Statement’ you have entered, and the relevant actions during ‘Completing an Assessment’ you may or may have not placed alongside it. Review your…
HITRUST’s Criteria for Submission
Assessment Questionnaire » Submitting an Assessment » HITRUST’s Criteria for Submission
If you have completed all of the Assessments Statements in either your Self or Validated Assessment to HITRUST, please verify that the below is covered before submitting it. 1. Ensure that the following Required Documents have been uploaded with the correct dates as…
CAPs
Analytics » Dashboards » CAPs
The CAPs function is prepared by your Assessor Organization and the Assessor as applicable, and will also serve to describe a ‘Corrective Action Plan (CAP)’. These measurements describe the plan to correct deficiencies identified during the Assessment for…
Reports
Reports
Reports issued against the HITRUST CSF are uploaded and shared within MyCSF. Follow the steps outlined in these topics for help downloading, approving, and requesting changes for a Report. From the MyCSF Homepage, click on the Assessment name of the report you…
Reports
Analytics » Reports
Find your Internal and External Reports housed under the ‘Reports’ section of the ‘Analytics’ portion of ‘MyCSF’. Reports After authenticating through the MyCSF Portal, click on ‘Analytics’ in the top Menu bar. Once…
Uploading Evidence
Documents » Uploading Evidence
Upload a piece of evidence you believe will aid you in your assessment. The documents you provide will help support the ‘Assessor’ on why certain Maturity Value selections were made. From the MyCSF Homepage, click on the Assessment name you would like to…
Answering an Assessment Statement
Assessment Questionnaire » Completing an Assessment » Answering an Assessment Statement
There are many components to completing an assessment. This includes: Answering a Statement, Assigning a Respondent, Related Authoritative Sources, Risk Factors, History Assessment Log, Illustrative Procedures, Adding Documents, and CAP Management. r2 Assessment: …
Measure & Managed
Analytics » Reports » Internal Reports » Measure & Managed
Find each Domain name and the Statements for the Measured and Managed Scores that have been taken by management. Measure and Managed After authenticating through the ‘MyCSF Portal’, click on ‘Analytics’ in the top Menu bar. Once pressed, choose…
Organization Information
Pre-Assessment » Scoping an Assessment » Organization Information
The fields in this page range from Contact Information, Organizational Profile, and the Corporate Environment text boxes. Press ‘Save & Continue’ when you are finished. Contact Information – Fill in the text boxes with mandatory fields: Contact Name, Title,…
Viewing the Library
Library » Viewing the Library
The HITRUST CSF is a comprehensive and prescriptive framework that can be scaled and tailored based on an organization’s type, size and complexity. This library will include the most interactive and up-to-date source for the HITRUST CSF.
Residual Risk
Analytics » Dashboards » Assessments » Residual Risk
The ‘Residual Risk’ you carry will be nested here and will carry statistics and charts that mark your vulnerability by ‘Residual Risk Score’, ‘CSF Compliance’ and ‘Residual Risk Rating’. ‘Residual Risk’…
Organization Consolidation
Administration » Organization Consolidation
User accounts are consolidated at the Organization level in the HITRUST application landing page. The consolidation helps eliminate redundant accounts at the application module level, and ensures all user accounts are associated with one Organization based on their…
Attaching Partner Agreement
Documents » Attaching Partner Agreement
The ‘Partner Agreement’ is made by and between the ‘Participant’ and HITRUST Services Corporations. 1. On the sidebar, click the ‘Partner Agreement’ label to be rushed to the Partner Agreement page. 2. Click on the ‘See a Template’ link to download…
Attaching the Management Representation Letter
Documents » Attaching the Management Representation Letter
Every Assessment submitted to HITRUST must include a Management Representation Letter executed on your Organization’s Letterhead, signed by the appropriate level of management overseeing the Assessment, and dated the last day of testing. 1. On the sidebar, click the…
HITRUST Portal
HITRUST Portal
This topic will instruct you on how to properly login to the HITRUST Portal, setup and manage Two Factor Authentication, change and/or reset a Password, and access the MyCSF and/or Assessment XCHANGE Application(s). HITRUST Portal Sub-Topics Logging in to the…
Submit a Domain to an Assessor
Assessment Questionnaire » Submitting an Assessment » Submit a Domain to an Assessor
When you are ready to submit your domain to your assessor for validation, press the link located in the green banner above the Assessment Statements for the Domain that you’ve finished. This link will not become available until all of the Assessment Statements have…
Home
Analytics » Dashboards » Home
Here you will see your total ‘Assessments’, ‘Avg. Maturity Score per Domain’, as well as your ‘Gap Status’, and ‘Residual Risk Rating’ charts. Home – Here is the homepage you will automatically arrive at upon…
Library
Library
Located at the top of the Menu bar, the Library can be viewed and/or exported as a template, based on the any of your downloaded versions. You can interact with the HITRUST CSF in a top to bottom structure starting from the Control Category, Control Objective, Control…
Analytics
Analytics
The ‘Analytics’ feature complements ‘MyCSF’ by delivering extensive and practical information about your Assessments in a multitude of venues ranging from viewing your Avg Maturity Scores per Assessment, Benchmarking scores with other…
Benchmarking
Analytics » Dashboards » Metrics » Benchmarking » Benchmarking
Review each domains Avg Maturity Scores and find the averages between two or more Assessments and the industry Benchmark. Benchmarking – This option enables a user to search through data that has been collected for relevant Validated Assessments to allow our…
Metrics
Analytics » Dashboards » Metrics
The ‘Metrics’ section compiles industry data that is associated to your organization and reflects averages, standards, and patterns, to their security testing. Users can make quick comparisons on where their organization stands along with any discernment…
Diary
Analytics » Dashboards » Assessments » Assessments » Diary
Review your ‘Diary Entries’ and what you and your Assessor have conversed about regarding any Statement that you can your Assessor have spoken about. This is a useful feature for record keeping all on your ‘Diary’ function. Assessments –…
Admin
Analytics » Dashboards » Admin
Under the ‘Admin’ tab, you can view each Assessment’s Administrative and Scoping inputs under this subscription. Click on each function at the top of the page to access one. Admin – This option allows you to review the Pre-Assessment information…
Benchmarking
Analytics » Dashboards » Metrics » Benchmarking
This option enables a user to search through data that has been collected for relevant Validated Assessments to allow our users to do a quick comparison check against their industry standards. Metrics – The ‘Metrics’ section compiles industry data…
CAP Status
Analytics » Dashboards » CAPs » CAP Status
Here you will find the whereabouts on where your CAPs stand as well as insightful charts that label your ‘GAP Identified’ and ‘CSF Compliant’ status. CAPs – Find all of the deficiencies you have made in your Assessment and review the…
CAP Management
Analytics » Dashboards » CAPs » CAP Management
View all of the statuses of each Statement that have been issued a ‘CAP Management’ and the maturity scoring from these Statements. CAPs – Find all of the deficiencies you have made in your Assessment and review the CAPs placed by your users within…
Reset
Analytics » Dashboards » Reset
Click on this button to refresh the page and restore any settings you have made in the filters and any modifications you have made in the Dashboards feature. Reset – This function allows you to reset all of the filters you have applied and any changes you have…
Creating a Custom Assessment Library
Homepage » Creating a Custom Assessment Library
Account Administrators are able to create and manage a Custom Assessment using the HITRUST CSF and its Authoritative Sources using HITRUST provided questions. Please follow the steps below on how to create a customized Assessment Library. From the MyCSF Homepage,…
Recreating a Validated Assessment Object
Interim Assessment (r2 only) » Recreating a Validated Assessment Object
Once an Interim Assessment has been provisioned, please note that you will have to answer all the Pre-Assessment and Assessment Questionnaire identical to your CSF Certification. *If you still have access to the Original Certified Assessment Object, you do not need to…
Attaching the QA Checklist
Documents » Attaching the QA Checklist
The HITRUST CSF Assessor Quality Checklist is a required Document that must be signed by the Engagement Executive and Assessor QA Resource for all Validated Assessments. 1. On the sidebar, click the ‘QA Checklist’ label to be rushed to the QA Checklist page.…
Evaluating your Clients Assessment’s Statements
Assessment Questionnaire » Completing an Assessment » Creating and Importing Assessor Evaluation for an Offline Assessment » Evaluating your Clients Assessment’s Statements
Once you have downloaded the excel spreadsheet, you are now able to evaluate and validated your Assessment Statements offline. 1. From the spreadsheet, click on the ‘Assessment’ sheet to add your maturity evaluation and comments for each Assessment…
Compliance
Analytics » Dashboards » Assessments » Compliance
Under the ‘Controls’ category, find all of your domains maturity scores by ‘CSF Compliance’, ‘CSF Baseline’, and ‘CSF Results’. Controls – Find all of your data sorted by control level and sifted down to…
Comparisons
Analytics » Dashboards » Assessments » Assessments » Comparisons
Compare your Assessments and create your own observations between maturity scores and on where your security stands per Domain, or Statement. Assessments – View your Assessment Result in detail and view the maturity scores by Statements in each of your…
How to Unpublish (Disable) Assessment Inheritability
Inheritance » External Inheritance » Inheritance Providers » How to Unpublish (Disable) Assessment Inheritability
From the ‘Name & Security’ pre-assessment page, uncheck the box next to “Published” and click Confirm when prompted. *Note: The system will automatically unpublish an assessment on its date of expiration—for the r2 Certification: the 2-year…
MyCSF Application
MyCSF Application
MyCSF is a full-featured Assessment Application that streamlines the compliance and risk management process. Simplistic in design, the tool efficiently helps manage all of your HITRUST CSF Assessments and Implementations. Homepage of MyCSF
Assessments
Analytics » Dashboards » Assessments » Assessments
Check out each Assessment under your subscription with all of the data applicable to your Assessments under the categories ‘High Level’, ‘Responses’, ‘Results’, ‘Comparisons’, ‘Diary’, ‘Users’,…
Answering your Assessment’s Statements
Assessment Questionnaire » Completing an Assessment » Creating an Offline Assessment » Answering your Assessment’s Statements
Once you have downloaded the excel spreadsheet, you are now able to answer your Assessment Statements offline. 1. From the spreadsheet, click on the ‘Assessment’ sheet to select if a Statement is or not applicable, maturity scores for each maturity level, and…
Scorecards
Analytics » Dashboards » Metrics » Scorecards
Determine how your Statement results comply with your average maturity scores to any of the sections of our more popular standardizing bodies. Review your outcomes and compare it to one of the ‘Authoritative Source Sections’ given to discover how secure the…
Users
Analytics » Dashboards » Assessments » Assessments » Users
View all of the users that been ‘Assigned a Statement’ and take a look if a user has completed or has not started the Statements assigned to him/her. Assessments – View your Assessment Result in detail and view the maturity scores by Statements in each…
Attaching Test Plans
Documents » Attaching Test Plans
Mandatory after April 1, 2019 for all Validated Assessments, thorough Test Plans must be submitted to meet the HITRUST Requirements covering the testing of all required controls. Test plans should document with signatures, the Engagement Executive, QA Resource, and…
Creating an Offline Assessment
Assessment Questionnaire » Completing an Assessment » Creating an Offline Assessment
An Offline Assessment gives you the ability to complete an Assessment outside of MyCSF using a spreadsheet and seamlessly import it back into the application. If you have a MyCSF Subscription and wish to complete your Assessment offline, follow the instructions below…
High Level
Analytics » Dashboards » Assessments » Assessments » High Level
View your chosen Assessment at the highest ‘Avg Maturity Level’ available, accompanied by two interactive charts relating to your Assessment’s ‘Status Filters’ and ‘GAP Status’ for your Statements. Assessments – View your…
High Level
Analytics » Dashboards » Assessments » Compliance » High Level
View your chosen Assessment at the highest ‘CSF Compliance per Domain’ available, partnered with ‘Maturity Rating per Domain’ for your Statements. Compliance – Find all of your data sorted by control level and sifted down to individual…
CSF Compliance
Analytics » Dashboards » Assessments » Compliance » CSF Compliance
View your chosen Assessment by ‘CSF Compliance’ rate and compare them to those that are ‘Fully Compliant’, ‘Partially Compliant’, or ‘Not Compliant’ Statements. Compliance – Find all of your data sorted by control…
High Level
Analytics » Dashboards » Assessments » Residual Risk » High Level
This option allows us to view the ‘Table of Domains’ and the ‘Residual Risk Ratings’ that each carries for Statements ‘Completed in your Assessment’. Residual Risk – Investigate the areas of your Assessment that may or may…
Time-Based Two Factor Authentication Setup
HITRUST Portal » Configuring Two Factor Authentication » Time-Based Two Factor Authentication Setup
After successfully authenticating to the HITRUST Portal, you will be directed to the HITRUST Portal Landing page. Follow the steps below on how to properly configure time-based two factor authentication. From the HITRUST Portal, click the link “Setup how you want…
Scoping an Assessment
Pre-Assessment » Scoping an Assessment
The scope of the Assessment is the information about your organization that will be used to narrow down the most precise assessment for your compliance and security needs. Fields marked with red asterisks are mandatory. After authenticating through the HITRUST…
Documents & Other
Analytics » Dashboards » Assessments » Documents & Other
View all of the ‘Requirements’ that your chosen Assessment is mandated to undergo, including, relevant ‘Controls’ and ‘Authoritative Sources’ for it. Requirements – Inspect each of the required materials in any assessment…
All Potential Requirements
Analytics » Dashboards » Assessments » Documents & Other » All Potential Requirements
Find your ‘Potential Requirements’ to the current state of your Assessment including ‘Statements; and Authoritative Sources’**. Requirements – Inspect each of the required materials in any assessment ranging from the…
CAP Steps
Analytics » Dashboards » CAPs » CAP Steps
This section allows you to see all of the information placed when entering ‘Adding a Corrective Action Plan’, including ‘Milestones’, ‘Status’, ‘Residual Risk’, and ‘Points of Contact (POC)’. CAPs –…
Performing an Interim Review Assessment
Interim Assessment (r2 only) » Performing an Interim Review Assessment
If you are coming up on your 1-year Anniversary of your CSF Certification, you will need to perform an Interim Assessment. The Interim Assessment is to ensure that the scope of your CSF Certification is still valid. From the Homepage, click on the Assessment with…
Subscriber Management
Administration » Subscriber Management
Depending on the Subscription Level access you have to MyCSF, the Subscriber Management page, is where you can manage and access your account’s ‘People’, ‘API Users’, ‘Custom Security Roles’, ‘Assessments’, ‘Links to HAX’, and ‘IP…
Resetting MyCSF Password
HITRUST Portal » Resetting MyCSF Password
If you have forgotten your MyCSF password, please follow the steps below: From the HITRUST Portal, click the ‘Reset Password’ link adjacent to the ‘Login’ button. Enter your email address associated to your MyCSF Account and click the ‘Reset’…
Adding a New Custom Role
Administration » Subscriber Management » Adding a New Custom Role
If you have a Corporate Level Subscription or above and you are wishing to add a new custom role to your MyCSF Account, please follow the steps below: From the Homepage, click the ‘Administration’ button at the top Menu bar or below your Subscription…
Scoring Extract Profile
Analytics » Reports » Internal Reports » Scoring Extract Profile
Find the Scoring patterns for all of your Statements and each of your maturity percentage by each domain color coded with green signifying passing, yellow requires CAPs, and red being failing. Scoring Extract Report After authenticating through the ‘MyCSF…
Creating a New Assessment
Pre-Assessment » Creating a New Assessment
If you are an Account Administrator, you’ll be able to simply add a new Assessment directly through the homepage of MyCSF. From the MyCSF Homepage, click the ‘+ Create Assessment’ button on the ‘Assessments’ table found under the Organization panel. You…
View the Authoritative Sources
Assessment Questionnaire » Completing an Assessment » Answering an Assessment Statement » View the Authoritative Sources
If you’re interested in the standards and regulations that comprise an Assessment Statement, use the Authoritative Sources link under the More Info dropdown. From the Assessment Domain, click on the Assessment Statement you wish to view the Authoritative…
View the Assessment Statement Log
Assessment Questionnaire » Completing an Assessment » Answering an Assessment Statement » View the Assessment Statement Log
Keep track of the users who have answered an Assessment Statement by accessing the Assessment Statement Log. MyCSF archives who modified a statement and when they did it. From the Assessment Domain, click on the Assessment Statement you wish to view the…
Viewing an Assessment
Pre-Assessment » Creating a New Assessment » Viewing an Assessment
From the Hompage of MyCSF, you can view any Assessment that has been generated. To view an Assessment, please follow the steps below to access and view an Assessment within your MyCSF Account. From the Homepage, there is an ‘Assessments’ table that includes…
Homepage
Homepage
The Homepage of MyCSF is the starting location for every user that authenticates through the HITRUST Portal. From here, you can easily locate Assessments, Subscription Information, Your Notifications, Custom Libraries and more. Subscription Information …
Selecting Your Assessment
Homepage » Selecting Your Assessment
After setting your Organization an Assessment table will appear with all of the Assessments within your account. Atop the ‘Assessments’ table, is a donut chart displaying a consolidation of the statuses of your Assessments. Click on portions of the donut chart to…