Microsoft Azure Partners with HITRUST for a Shared Responsibility Matrix


Healthcare solutions in the cloud are in more demand than ever before due to the ongoing coronavirus pandemic and the need for social distancing. Microsoft Azure has made its hybrid cloud solution more attractive to this industry with its recent partnership with HITRUST through the HITRUST Shared Responsibility Matrix. 

This matrix provides clarity on roles and responsibilities for implementing solutions in Azure that meet the stringent HITRUST standard for protected sensitive health data. The HITRUST CSF provides the structure, transparency, guidance and cross-references to authoritative sources organizations worldwide need to be certain their data protection complies with. HITRUST CSF has leveraged nationally and internationally accepted security and privacy-related regulations, standards and frameworks, including ISO, NIST, PCI, HIPAA and COBIT to ensure a comprehensive set of security and privacy controls, and continually incorporates additional authoritative sources.  

The Shared Responsibility Matrix eases the task of understanding which of the many HITRUST controls that can apply to an Azure customer are the responsibility of the customer, which are shared, and which are already fully covered by Azure. 

An additional benefit to Azure customers for using the Shared Responsibility Matrix is the HITRUST inheritance capability, which allows for Azure users to inherit controls from Azure’s HITRUST assessment and apply it to their own assessments easily, saving time and cost. When completing your HITRUST CSF Assessment, you can select “Request Inheritance” through the HITRUST MyCSF SaaS platform for any requirements you plan to inherit from Azure.  

The Shared Responsibility Matrix and Azure Blueprints exemplify Azure’s leadership in compliance. In fact, as of last month, 172 Azure offerings across 49 Azure regions have achieved HITRUST CSF certifications.  

2W Tech has a Cybersecurity Compliance Program that is designed to support our clients’ compliance obligations like HITRUST. We’re also a Microsoft Gold Partner who can help you make the most of the apps in Microsoft Azure. Call us today to get started. 

Read More:

What is a Cybersecurity Framework?

Does Your Managed IT Plan Give You Options?

Back to IT News