The HITRUST RMF—embodied in the HITRUST Approach—provides organizations a consistent approach to security certification, risk management, and shared trust through the HITRUST CSF, HITRUST Assurance Program, and supporting methodologies and tools such as the HITRUST assessment methodology and MyCSF™. The HITRUST RMF is similarly built around the 4-step risk management process as well but includes significant elements of the NIST RMF as the HITRUST CSF is an industry level enhanced overlay of the NIST SP 800-53 moderate impact control baseline, which we will discuss in more detail later.