MyCSF 2.0
1
1
Table of Contents
MyCSF 2.0
1
MyCSF 2.0 — 1
1.
MyCSF Application
2.
HITRUST Portal
2.1.
Logging in to the HITRUST Portal
2.1.1.
First Login and Authentication
2.2.
Configuring Two Factor Authentication
2.2.1.
Phone-Based Two-Factor Authentication Setup
2.2.2.
Time-Based Two Factor Authentication Setup
2.3.
Changing MyCSF Password
2.4.
Resetting MyCSF Password
3.
Administration
3.1.
Subscriber Management
3.1.1.
Adding a New Person
3.1.2.
Adding a New API User
3.1.3.
Adding a New Custom Role
3.1.4.
Setting IP Restrictions
3.2.
People Management
3.2.1.
Managing Administrative Roles
3.2.2.
Controlling Assessment Roles
3.3.
Organization Consolidation
3.3.1.
Administrating Organization Accounts
3.3.2.
User Management
3.3.2.1.
Adding a New Person to the Portal
3.3.2.2.
Edit Existing User in the Portal
3.3.2.3.
License Management
4.
Homepage
4.1.
Setting Your Organization
4.2.
Selecting Your Assessment
4.3.
Viewing Notifications and Tasks
4.4.
Creating a Custom Assessment Library
4.5.
News About HITRUST
5.
Pre-Assessment
5.1.
Creating a New Assessment
5.1.1.
Name & Security
5.1.1.1.
Assessment Name
5.1.1.2.
CSF Version
5.1.1.3.
Selecting an Assessor
5.1.1.4.
Setting User Access
5.1.1.5.
Setting Assessor Access
5.1.1.6.
Cloning an Assessment
5.1.1.7.
Deleting an Assessment
5.1.2.
Viewing an Assessment
5.2.
Scoping an Assessment
5.2.1.
Organization Information
5.2.2.
Assessment Options
5.2.3.
Library Retention
5.2.4.
Systems
5.2.5.
Facilities
5.2.6.
Default Scoring Profile
5.2.7.
Factors
6.
Assessment Questionnaire
6.1.
Completing an Assessment
6.1.1.
Viewing an Assessment Domain
6.1.1.1.
Assessment Domain Status Filters
6.1.2.
Answering an Assessment Statement
6.1.2.1.
Setting Assessment Statements as Not Applicable
6.1.2.2.
Assigning a User
6.1.2.3.
Adding a User to an Assessment Domain
6.1.2.4.
Adding a Related Document
6.1.2.5.
Inheriting an Assessment Statement
6.1.2.6.
Adding Corrective Action Plans
6.1.2.7.
Adding a Diary Entry
6.1.2.8.
View the Illustrative Procedures
6.1.2.9.
View the Authoritative Sources
6.1.2.10.
View the Risk Factors
6.1.2.11.
View the Assessment Statement Log
6.1.3.
Creating an Offline Assessment
6.1.3.1.
Answering your Assessment’s Statements
6.1.3.2.
Managing your Documents
6.1.3.3.
Linking Statements and Documents
6.1.4.
Creating and Importing Assessor Evaluation for an Offline Assessment
6.2.
Submitting an Assessment
6.2.1.
Submit a Domain to an Assessor
6.2.2.
HITRUST’s Criteria for Submission
6.2.3.
Submitting External Assessor Reverted Controls Back to the External Assessor
6.3.
Corrective Action Plans (CAPs) in Your Assessment
6.3.1.
Adding CAPs to a Statement
6.3.2.
Linking CAPs to a Statement
6.3.3.
Unlinking CAPs from a Statement
6.4.
Potential Quality Issues
6.4.1.
Viewing Potential Quality Issues
6.4.2.
Overriding a Potential Quality Issue
7.
Corrective Action Plans (CAPs)
7.1.
Viewing Your Organization’s CAP Repository
7.2.
Creating CAPs
7.3.
Modifying CAPs
7.4.
Unlinking CAPs
7.5.
Deleting CAPs
7.6.
Managing Your CAP Repository’s Access
8.
MyCSF Inheritance Program
8.1.
Internal Inheritance
8.2.
External Inheritance
8.2.1.
Total Inheritance
8.2.2.
Partial Inheritance
8.2.3.
Submitting External Inheritance Request to Vendor
8.2.4.
Applying and Completing External Inheritance Request
8.2.5.
Approve or Reject External Inheritance Request (by Vendor)
8.2.6.
Making Your Assessment Inheritable
9.
Documents
9.1.
Uploading Evidence
9.1.1.
Uploading Documents in Bulk
9.2.
Downloading Evidence
9.2.1.
Downloading Documents in Bulk
9.3.
Attaching the Management Representation Letter
9.4.
Attaching the Organizational Overview and Scope
9.5.
Attaching Partner Agreement
9.6.
Attaching the QA Checklist
9.7.
Attaching Test Plans
9.8.
Assessor Timesheet
10.
Reservations
10.1.
Making a Reservation
10.2.
Rescheduling/Cancelling a Reservation
10.2.1.
Missed My Submission Date
11.
HITRUST CSF Reports
11.1.
Downloading a HITRUST CSF Report
11.2.
Request a Revision for an Issued Report
11.3.
Approving a Draft Report
12.
Results Distribution System (RDS)
12.1.
Sharing Results Internally
12.1.1.
Sharing Workflow – Internal
12.2.
Sharing Results Externally
12.2.1.
Sharing Workflow – External
13.
Interim Assessment (r2 only)
13.1.
Performing an Interim Review Assessment
13.2.
Recreating a Validated Assessment Object
13.2.1.
Re-validating the Assessment
13.2.2.
Answering CAPs & Generating an Interim Assessment
13.3.
Manually Generating an Interim Assessment
14.
Internal Assessors
14.1.
Applying to be an Internal Assessor
14.2.
Viewing your Internal Assessor Functions
14.3.
Configuring a User as a HITRUST CSF practitioner
14.4.
Enabling Internal Assessors On Your Assessment
14.5.
Assigning Internal Assessors to an Assessment
14.6.
Answering Requirement Statements
14.7.
Completing your Internal Assessor Time Sheet
15.
Library
15.1.
Viewing the Library
15.1.1.
Authoritative Source Documents
15.1.2.
Factor Categories
15.1.3.
CSF Control Categories
15.1.4.
Assessment Domains
15.1.5.
CSF Control Level Names
16.
Analytics
16.1.
Dashboards
16.1.1.
Home
16.1.2.
Admin
16.1.2.1.
Administrative
16.1.2.2.
Factors
16.1.2.3.
Systems
16.1.2.4.
Facilities
16.1.3.
Assessments
16.1.3.1.
Assessments
16.1.3.1.1.
High Level
16.1.3.1.2.
Status
16.1.3.1.3.
Results
16.1.3.1.4.
Comparisons
16.1.3.1.5.
Diary
16.1.3.1.6.
Users
16.1.3.1.7.
Sources
16.1.3.2.
Compliance
16.1.3.2.1.
High Level
16.1.3.2.2.
CSF Compliance
16.1.3.2.3.
CSF Baseline
16.1.3.2.4.
CSF Results
16.1.3.3.
Residual Risk
16.1.3.3.1.
High Level
16.1.3.3.2.
Residual Risk Rating
16.1.3.4.
Compliance & Procedures
16.1.3.4.1.
Illustrative Procedures
16.1.3.4.2.
CSF Implementation
16.1.3.5.
Documents & Other
16.1.3.5.1.
Related Documents
16.1.3.5.2.
All Potential Requirements
16.1.4.
CAPs
16.1.4.1.
CAP Steps
16.1.4.2.
CAP Status
16.1.4.3.
CAP Management
16.1.5.
Metrics
16.1.5.1.
Scorecards
16.1.5.2.
Benchmarking
16.1.5.2.1.
Benchmarking
16.1.5.2.2.
Statistics
16.1.6.
Library
16.1.6.1.
CSF Library
16.1.6.2.
Authoritative Sources
16.1.7.
Filters
16.1.8.
Reset
16.2.
Reports
16.2.1.
External Reports
16.2.1.1.
Administrative Details and Factors Report
16.2.1.2.
Assessment Report
16.2.1.3.
Assessment with HITRUST CSF Implementation Report
16.2.1.4.
Assessor Report
16.2.1.5.
Dashboards Report
16.2.1.6.
Illustrative Procedures Report
16.2.1.7.
Related Documents Report
16.2.1.8.
CAP Report
16.2.1.9.
Real Time Gap List Report
16.2.1.10.
CSF Library
16.2.1.11.
QA Progress Report
16.3.
MyCSF Compliance and Reporting Packs
16.4.
Application Bar
16.4.1.
Bookmarks
16.4.2.
Details-on-Demand
16.4.3.
Menu
17.
Search
Download as PDF
15.1.3.
CSF Control Categories
15.1.2.
Factor Categories
15.1.4.
Assessment Domains
Feedback
Was this helpful?
Yes
No
You indicated this topic was not helpful to you ...
Could you please leave a comment telling us why? Thank you!
×
Thanks for your feedback.
Post your comment on this topic.
Your name *
Your e-mail address *
Comment *
Post Comment
Post your comment on this topic.