MyCSF 2.0
1
  • 1
Table of Contents
MyCSF 2.0
  • 1
    • MyCSF 2.0 — 1
GrabGrab
GrabGrab
  • 1. MyCSF Application
  • 2. HITRUST Portal
    • 2.1. Logging in to the HITRUST Portal
      • 2.1.1. First Login and Authentication
    • 2.2. Configuring Two Factor Authentication
      • 2.2.1. Phone-Based Two-Factor Authentication Setup
      • 2.2.2. Time-Based Two Factor Authentication Setup
    • 2.3. Changing MyCSF Password
    • 2.4. Resetting MyCSF Password
  • 3. Administration
    • 3.1. Subscriber Management
      • 3.1.1. Adding a New Person
      • 3.1.2. Adding a New API User
      • 3.1.3. Adding a New Custom Role
      • 3.1.4. Setting IP Restrictions
    • 3.2. People Management
      • 3.2.1. Managing Administrative Roles
      • 3.2.2. Controlling Assessment Roles
    • 3.3. Organization Consolidation
      • 3.3.1. Administrating Organization Accounts
      • 3.3.2. User Management
        • 3.3.2.1. Adding a New Person to the Portal
        • 3.3.2.2. Edit Existing User in the Portal
        • 3.3.2.3. License Management
  • 4. Homepage
    • 4.1. Setting Your Organization
    • 4.2. Selecting Your Assessment
    • 4.3. Viewing Notifications and Tasks
    • 4.4. Creating a Custom Assessment Library
    • 4.5. News About HITRUST
  • 5. Pre-Assessment
    • 5.1. Creating a New Assessment
      • 5.1.1. Name & Security
        • 5.1.1.1. Assessment Name
        • 5.1.1.2. CSF Version
        • 5.1.1.3. Selecting an Assessor
        • 5.1.1.4. Setting User Access
        • 5.1.1.5. Setting Assessor Access
        • 5.1.1.6. Cloning an Assessment
        • 5.1.1.7. Deleting an Assessment
      • 5.1.2. Viewing an Assessment
    • 5.2. Scoping an Assessment
      • 5.2.1. Organization Information
      • 5.2.2. Assessment Options
      • 5.2.3. Library Retention
      • 5.2.4. Systems
      • 5.2.5. Facilities
      • 5.2.6. Default Scoring Profile
      • 5.2.7. Factors
  • 6. Assessment Questionnaire
    • 6.1. Completing an Assessment
      • 6.1.1. Viewing an Assessment Domain
        • 6.1.1.1. Assessment Domain Status Filters
      • 6.1.2. Answering an Assessment Statement
        • 6.1.2.1. Setting Assessment Statements as Not Applicable
        • 6.1.2.2. Assigning a User
        • 6.1.2.3. Adding a User to an Assessment Domain
        • 6.1.2.4. Adding a Related Document
        • 6.1.2.5. Inheriting an Assessment Statement
        • 6.1.2.6. Adding Corrective Action Plans
        • 6.1.2.7. Adding a Diary Entry
        • 6.1.2.8. View the Illustrative Procedures
        • 6.1.2.9. View the Authoritative Sources
        • 6.1.2.10. View the Risk Factors
        • 6.1.2.11. View the Assessment Statement Log
      • 6.1.3. Creating an Offline Assessment
        • 6.1.3.1. Answering your Assessment’s Statements
        • 6.1.3.2. Managing your Documents
        • 6.1.3.3. Linking Statements and Documents
      • 6.1.4. Creating and Importing Assessor Evaluation for an Offline Assessment
        • 6.1.4.1. Evaluating your Clients Assessment’s Statements
      • 6.1.5. Offline Assessment – Inheritance
    • 6.2. Submitting an Assessment
      • 6.2.1. Submit a Domain to an Assessor
      • 6.2.2. HITRUST’s Criteria for Submission
      • 6.2.3. Submitting External Assessor Reverted Controls Back to the External Assessor
    • 6.3. Corrective Action Plans (CAPs) in Your Assessment
      • 6.3.1. Adding CAPs to a Statement
      • 6.3.2. Linking CAPs to a Statement
      • 6.3.3. Unlinking CAPs from a Statement
    • 6.4. Potential Quality Issues
      • 6.4.1. Viewing Potential Quality Issues
      • 6.4.2. Overriding a Potential Quality Issue
  • 7. Corrective Action Plans (CAPs)
    • 7.1. Viewing Your Organization’s CAP Repository
    • 7.2. Creating CAPs
    • 7.3. Modifying CAPs
    • 7.4. Unlinking CAPs
    • 7.5. Deleting CAPs
    • 7.6. Managing Your CAP Repository’s Access
  • 8. Inheritance
    • 8.1. Internal Inheritance
      • 8.1.1. How To Create/Apply Internal Inheritance Requests
      • 8.1.2. How To View Internally-Inherited Assessment Scores
      • 8.1.3. How To Delete Internal Inheritance Requests
    • 8.2. External Inheritance
      • 8.2.1. Inheritance Providers
        • 8.2.1.1. How to Publish (Enable) Assessment Inheritability
        • 8.2.1.2. How to Unpublish (Disable) Assessment Inheritability
      • 8.2.2. Inheritance Requestors
        • 8.2.2.1. How To Create External Inheritance Requests by Requirement
        • 8.2.2.2. How To Submit External Inheritance Requests for Approval
        • 8.2.2.3. How To Apply Approved External Inheritance Requests
        • 8.2.2.4. How To View Externally-Inherited Assessment Scores
        • 8.2.2.5. How To Delete External Inheritance Requests
        • 8.2.2.6. How To Request Inheritance Using the Offline Assessment Template
        • 8.2.2.7. How To Use the Kanban View To Track Inheritance Requests
  • 9. Documents
    • 9.1. Uploading Evidence
      • 9.1.1. Uploading Documents in Bulk
    • 9.2. Downloading Evidence
      • 9.2.1. Downloading Documents in Bulk
    • 9.3. Attaching the Management Representation Letter
    • 9.4. Attaching the Organizational Overview and Scope
    • 9.5. Attaching Partner Agreement
    • 9.6. Attaching the QA Checklist
    • 9.7. Attaching Test Plans
    • 9.8. Assessor Timesheet
  • 10. Reservations
    • 10.1. Making a Reservation
    • 10.2. Rescheduling/Cancelling a Reservation
      • 10.2.1. Missed My Submission Date
  • 11. Reports
    • 11.1. r2 and i1 Assessments
      • 11.1.1. 11.1.1. Downloading the Report
      • 11.1.2. Request a Revision for an Issued Report
      • 11.1.3. Approving a Draft Report
    • 11.2. bC Assessments
      • 11.2.1. Downloading the Report
  • 12. Interim Assessment (r2 only)
    • 12.1. Performing an Interim Review Assessment
    • 12.2. Recreating a Validated Assessment Object
      • 12.2.1. Re-validating the Assessment
      • 12.2.2. Answering CAPs & Generating an Interim Assessment
    • 12.3. Manually Generating an Interim Assessment
  • 13. Internal Assessors
    • 13.1. Applying to be an Internal Assessor
    • 13.2. Viewing your Internal Assessor Functions
    • 13.3. Configuring a User as a HITRUST CSF practitioner
    • 13.4. Enabling Internal Assessors On Your Assessment
    • 13.5. Assigning Internal Assessors to an Assessment
    • 13.6. Answering Requirement Statements
    • 13.7. Completing your Internal Assessor Time Sheet
  • 14. Library
    • 14.1. Viewing the Library
      • 14.1.1. Authoritative Source Documents
      • 14.1.2. Factor Categories
      • 14.1.3. CSF Control Categories
      • 14.1.4. Assessment Domains
      • 14.1.5. CSF Control Level Names
  • 15. Analytics
    • 15.1. Reports
      • 15.1.1. External Reports
        • 15.1.1.1. Administrative Details and Factors Report
        • 15.1.1.2. Assessment Report
        • 15.1.1.3. Assessment with HITRUST CSF Implementation Report
        • 15.1.1.4. Assessor Report
        • 15.1.1.5. Dashboards Report
        • 15.1.1.6. Illustrative Procedures Report
        • 15.1.1.7. Related Documents Report
        • 15.1.1.8. CAP Report
        • 15.1.1.9. Real Time Gap List Report
        • 15.1.1.10. CSF Library
        • 15.1.1.11. QA Progress Report
    • 15.2. MyCSF Compliance and Reporting Packs
    • 15.3. Application Bar
      • 15.3.1. Bookmarks
      • 15.3.2. Details-on-Demand
      • 15.3.3. Menu
  • 16. Search
Download as PDF

14.1.5. CSF Control Level Names

14.1.4. Assessment Domains
15. Analytics
© 2024 HITRUST All rights reserved. Reproduction, re-use, and creation of derivative works are prohibited.