Search
Related topics are listed below.
Managing Administrative Roles
Administration » People Management » Managing Administrative Roles
Follow the instructions below to manage a user’s Administrative Role. From the Homepage, click the ‘Administration’ button at the at the top Menu bar or below your Subscription Information. Click on the name you wish to update. From the People Management…
Administrative
Analytics » Dashboards » Admin » Administrative
View your Organization Information and Assessment Options inputs. This is the information you entered in your Assessment under the Administrative & Scoping section of ‘MyCSF’. Administrative Details After authenticating through the MyCSF Portal, click…
Managing Your CAP Repository’s Access
Corrective Action Plans (CAPs) » Managing Your CAP Repository’s Access
By Default, only Account Administrators are permitted to both view and edit an Organization’s CAP Repository as well as add/link CAPs to an Assessment. However, an Account Administrator can delegate these privileges to Standard Users within their entity in a few…
Administrative Details and Factors Report
Analytics » Reports » External Reports » Administrative Details and Factors Report
Contains information input into the “Administrative Details and Factors” of the HITRUST CSF Assessment. Administrative Details and Factors Report After authenticating through the ‘MyCSF Portal’, click on ‘Analytics’ in the top Menu…
Managing your Documents
Assessment Questionnaire » Completing an Assessment » Creating an Offline Assessment » Managing your Documents
All of the documents that exist in your Assessments Document Repository will be listed in the excel spreadsheet. You will have the ability to manage existing documents as well as adding new documents (without an attachment) in your Repository. !Please note that when…
Setting User Access
Pre-Assessment » Creating a New Assessment » Name & Security » Setting User Access
From the Name & Security page, you will be able to set the users associated with this Assessment under the People section. Place your users in the table as either No Access, Assessment Lead, Standard User, Customer Respondent, Read Only, or a Custom Role. You can…
Setting Assessor Access
Pre-Assessment » Creating a New Assessment » Name & Security » Setting Assessor Access
From the Name & Security page, here is where you will be able to see the assessor permissions associated with the assessment. You can also navigate to this page while filling out this assessment whenever you like by clicking on the Lock Icon. Assessor Permissions …
People Management
Administration » People Management
If you are an Account Administrator within your Organization, you have the ability to manage people’s access as well as modify their Assessment permissions. If you are wishing to elevate or decrease a user’s Administrative rights, click here for instructions. Or,…
Edit Existing User in the Portal
Administration » Organization Consolidation » User Management » Edit Existing User in the Portal
Follow the instructions below to edit an existing user in your Portal Account: From the User Management table, click the edit icon adjacent to the user’s name. From the modal, you will have the option to edit the user’s first name, last name, role, toggle…
Administrating Organization Accounts
Administration » Organization Consolidation » Administrating Organization Accounts
A green “Admin” button has been added to the HITRUST application landing page (see Figure 1, top right corner). The administration function is only viewable to users with Administrator roles as determined by their Organization. Figure 1: Selecting the…
Corrective Action Plans (CAPs)
Corrective Action Plans (CAPs)
Corrective Action Plans (CAPs) you add through MyCSF are inherently associated with your Organization in what is called the CAP Repository. This is done in an effort to allow you to reuse previously entered CAPs, vastly simplifying the management of these Corrective…
Name & Security
Pre-Assessment » Creating a New Assessment » Name & Security
The Name & Security page is where you will be able to see the administrative information pertaining to the Assessment. You can navigate to this page while filling out this assessment whenever you like. 1. After authenticating through the MyCSF Portal, click on your…
Admin
Analytics » Dashboards » Admin
Under the ‘Admin’ tab, you can view each Assessment’s Administrative and Scoping inputs under this subscription. Click on each function at the top of the page to access one. Admin – This option allows you to review the Pre-Assessment information…
Corrective Action Plans (CAPs) in Your Assessment
Assessment Questionnaire » Corrective Action Plans (CAPs) in Your Assessment
Because CAPs can be linked to Statements within an Assessment, you may be interested in which CAPs have been associated collectively to an Assessment. This can be done by simply going to the Assessment (link to viewing an assessment) for which you wish to see the…
Adding CAPs to a Statement
Assessment Questionnaire » Corrective Action Plans (CAPs) in Your Assessment » Adding CAPs to a Statement
For Statements that have been identified as a Gap or as requiring a Corrective Action, CAPs can be added directly from an Assessment Domain. In order to do this, it does require the “Can Manage CAPs” permission to be set if you are not an Account Administrator.…
Linking CAPs to a Statement
Assessment Questionnaire » Corrective Action Plans (CAPs) in Your Assessment » Linking CAPs to a Statement
For Statements that have been identified as a Gap or as requiring a Corrective Action, CAPs in your Repository can be linked directly from an Assessment Domain. In order to do this, it does require the “Can Manage CAPs” permission to be set if you are not an…
Systems
Analytics » Dashboards » Admin » Systems
View your System inputs. This is the information you entered in your Assessment under the Administrative & Scoping section of ‘MyCSF’. Systems After authenticating through the MyCSF Portal, click on ‘Analytics’ in the top Menu bar. Once pressed,…
Facilities
Analytics » Dashboards » Admin » Facilities
View your Facility inputs. This is the information you entered in your Assessment under the Administrative & Scoping section of ‘MyCSF’. Facilities After authenticating through the MyCSF Portal, click on ‘Analytics’ in the top Menu bar. Once…
Factors
Analytics » Dashboards » Admin » Factors
View your Factor inputs. This is the information you entered in your Assessment under the Administrative & Scoping section of ‘MyCSF’. Factors After authenticating through the MyCSF Portal, click on ‘Analytics’ in the top Menu bar. Once pressed,…
View the Risk Factors
Assessment Questionnaire » Completing an Assessment » Answering an Assessment Statement » View the Risk Factors
Review the Risk Factors that apply to an Assessment Statement. Remember you can change the scope of your assessment if the information does not look correct or if an environment change has occurred by going to **Administrative & Scoping in the Nav bar. From…
Administration
Administration
The Administration page is where you manage your Account(s). If you are an Account Administrator for one or multiple accounts, this is where you can access each account. If you are an Account Administrator for one account, then you will be directed to your…
Subscriber Management
Administration » Subscriber Management
Depending on the Subscription Level access you have to MyCSF, the Subscriber Management page, is where you can manage and access your account’s ‘People’, ‘API Users’, ‘Custom Security Roles’, ‘Assessments’, ‘Links to HAX’, and ‘IP…
Viewing an Assessment
Pre-Assessment » Creating a New Assessment » Viewing an Assessment
From the Hompage of MyCSF, you can view any Assessment that has been generated. To view an Assessment, please follow the steps below to access and view an Assessment within your MyCSF Account. From the Homepage, there is an ‘Assessments’ table that includes…
External Inheritance
Inheritance » External Inheritance
External Inheritance allows users to “inherit” assessment results that are shared by the same or different organizational entity. Access and use of external inheritance is subject to the following requirements and available functionality: The owner of the…
Selecting Your Assessment
Homepage » Selecting Your Assessment
After setting your Organization an Assessment table will appear with all of the Assessments within your account. Atop the ‘Assessments’ table, is a donut chart displaying a consolidation of the statuses of your Assessments. Click on portions of the donut chart to…
User Management
Administration » Organization Consolidation » User Management
If you are an Account Administrator within the HITRUST Portal, you have the ability to manage people’s access and information as well as modify their module license. Portal Administration
Internal Inheritance
Inheritance » Internal Inheritance
Internal Inheritance allows users to “inherit” assessment results that are shared by the same internal organizational entity. Access and use of internal inheritance is subject to the following requirements and available functionality: The owner(s) of both the…
Viewing Notifications and Tasks
Homepage » Viewing Notifications and Tasks
Tasks can be assigned to anyone with access to MyCSF. Provision tasks to anyone that you may feel will be an asset to completing your Assessment. From the MyCSF Homepage, there is a ‘Your Notifications’ component positioned on the right-hand side of the view.…
HITRUST Portal
HITRUST Portal
This topic will instruct you on how to properly login to the HITRUST Portal, setup and manage Two Factor Authentication, change and/or reset a Password, and access the MyCSF and/or Assessment XCHANGE Application(s). HITRUST Portal Sub-Topics Logging in to the…
Adding a Related Document
Assessment Questionnaire » Completing an Assessment » Answering an Assessment Statement » Adding a Related Document
If you wish to document evidence for an Assessment Statement, use the related documents functionality. You can either reference items previously uploaded or new items that are not yet in your Document repository. From the MyCSF Homepage, click the Assessment…
Approving a Draft Report
Reports » r2 and i1 Assessments » Approving a Draft Report
‘Draft Reports’ are automatically approved 30 days after posting. However, the reports can be manually approved prior to the 30 days, by selecting the ‘Approve HITRUST CSF Report’ button on the ‘CSF Reports’ section, HITRUST will then be notified to…
Uploading Evidence
Documents » Uploading Evidence
Upload a piece of evidence you believe will aid you in your assessment. The documents you provide will help support the ‘Assessor’ on why certain Maturity Value selections were made. From the MyCSF Homepage, click on the Assessment name you would like to…
Adding a New Custom Role
Administration » Subscriber Management » Adding a New Custom Role
If you have a Corporate Level Subscription or above and you are wishing to add a new custom role to your MyCSF Account, please follow the steps below: From the Homepage, click the ‘Administration’ button at the top Menu bar or below your Subscription…
Recreating a Validated Assessment Object
Interim Assessment (r2 only) » Recreating a Validated Assessment Object
Once an Interim Assessment has been provisioned, please note that you will have to answer all the Pre-Assessment and Assessment Questionnaire identical to your CSF Certification. *If you still have access to the Original Certified Assessment Object, you do not need to…
Setting IP Restrictions
Administration » Subscriber Management » Setting IP Restrictions
The IP Whitelist can be used to allow an Organization to specify a permitted range of IP Addresses that can be used to access your Organization’s information. To enable IP restrictions, follow the steps below: From the Homepage, click the ‘Administration’…
MyCSF Compliance and Reporting Packs
Analytics » MyCSF Compliance and Reporting Packs
MyCSF Compliance and Reporting Pack for HIPAA Step 1: Create a readiness, validated, or targeted assessment using v9.5.0 or later which includes the HIPAA breach notification rule and/or HIPAA security rule. Step 2: Go to Analytics > Compliance Packs > Select…
Adding a New API User
Administration » Subscriber Management » Adding a New API User
If you are wishing to add a new API User to your MyCSF Account, please follow the steps below: From the Homepage, click the ‘Administration’ button at the top Menu bar or below your Subscription Information. From the Subscriber Management page, click the ‘+…