LockPath Adds HITRUST Common Security Framework To Keylight Platform

Will help healthcare organizations better ensure personal health information privacy by understanding and mitigating security risks

December 18, 2012

3 Min Read


OVERLAND PARK, KS – December 17, 2012 – LockPath, a provider of innovative governance, risk and compliance (GRC) applications, today announced it will integrate the Health Information Trust Alliance (HITRUST) Common Security Framework (CSF) with its Keylight platform. This addition to Keylight’s extensive Content Library will offer the ability to quickly access and correlate the HITRUST CSF within Keylight, simplifying compliance reporting and helping healthcare organizations better ensure personal health information privacy by understanding and mitigating security risks.

The HITRUST CSF is an information security framework that harmonizes the requirements of existing standards and regulations, including federal (HIPAA, HITECH), third party (PCI, COBIT) and government (NIST, FTC). As a framework, the CSF provides organizations with the needed structure, detail and clarity relating to information security tailored to the healthcare industry.

Integrating and correlating data from multiple sources and systems into a single view is essential to effectively safeguard patient records and manage compliance risk factors. Keylight delivers integrated, actionable dashboards and reports to provide a holistic view of an organization’s security and risk posture. Healthcare organizations of all sizes are using LockPath to address the increasingly complex issues of regulatory compliance and risk management. With LockPath, healthcare organizations can:

· Get one consolidated view of all compliance and risk factors

· Manage regulations and standards including HIPAA, NIST, CMS, FDA

· Minimize data breaches and litigation

· Increase operational efficiency while managing risk

· Automate processes and simplify reporting

· Streamline vendor audits and risk assessments

· Ensure employee training and awareness for emergency procedures

· Prove environmental standards compliance

“While governance, risk and compliance solutions are available for large hospital networks, most are too expensive and unwieldy for smaller entities. Our mission is to give customers an easy-to-use, affordable solution for their risk and compliance headaches,” said Chris Caldwell, co-founder and CEO, LockPath. “The addition of the HITRUST CSF ensures that we continue to do just that – giving our healthcare customers a simple, best-practice approach to better manage risks and demonstrate compliance.”

“Safeguarding personal health information is absolutely critical for healthcare organizations of all sizes,” said Dr. Bryan Cline, vice president, CSF development and implementation, and chief information security officer, HITRUST. "The HITRUST CSF and advanced GRC tools like Keylight are simplifying and streamlining the assessment and compliance process so healthcare organizations across the country can improve information protection.”

For more information on the Keylight platform, please visit LockPath.com or call 913-601-4800.


The Health Information Trust Alliance (HITRUST) was born out of the belief that information security should be a core pillar of, rather than an obstacle to, the broad adoption of health information systems and exchanges. HITRUST, in collaboration with health care, business, technology and information security leaders, has established the Common Security Framework (CSF), a certifiable framework that can be used by any and all organizations that create, access, store or exchange personal health or financial information. In addition to establishing the CSF, HITRUST is driving adoption of and widespread confidence in a framework and sound risk-management practices through education, advocacy and outreach activities. For more information, visit http://www.hitrustalliance.net/.

About LockPath

LockPath speeds and improves organizations’ business and risk decision making. Its purpose-built Keylight platform correlates data, policies, procedures and assets from numerous sources to provide a comprehensive information security management system (ISMS) and IT government, risk and compliance (GRC) reporting across any organization. Forward-thinking product design is recognized by analysts and leading industry publications/awards as the next generation of IT GRC. LockPath is headquartered in Kansas City. Visit LockPath.com to learn more.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like

More Insights