Urban IT Doesn’t Just Talk About Compliance.
We Have the Experience and Know-How to Guide Your Company Through
Achieving and Maintaining Compliance.
HITRUST (The Health Information Trust Alliance) is the organization that created the Common Security Framework (CSF) and incorporated best practices across several industries to create a meaningful, robust compliance framework for healthcare. By incorporating the requirements of HIPAA, PCI, ISO and, NIST, the CSF creates a certifiable baseline that promises HIPAA compliance and effective security.
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) regulations require health care organizations and their business associates to develop and follow procedures that ensure the confidentiality and security of protected health information (PHI). Urban IT can help your company achieve and maintain full HIPAA compliance.
The Payment Card Industry Data Security Standard (PCI DSS) is a set of security standards designed to ensure that all companies that accept, process, store, or transmit credit card information maintain safety of cardholder data. The PCI DSS specifies 12 high level requirements in order to maintain compliance. Urban IT offers full PCI DSS compliant services.
The Statement on Standards for Attestation Engagements no. 16 (SSAE 16) is the compliance certification standard necessary to be considered with the AICPA trust principles. Urban IT can help your company meet and exceed standards for logical and physical access, security environment information, backup/recovery, and secure storage.
The American Institute of Certified Public Accountants (AICPA) developed the Service Organization Controls (SOC) standards to safeguard the privacy and confidentiality of information stored and processed in the cloud. System and Organization Control reports are intended to help organizations understand the internal controls present when working with third party service providers. Urban IT has expertise in SOC 1 and SOC 2 reports.
The Federal Information Security Modernization Act of 2014 (FISMA 2014) updates the Federal Government’s cyber security practices by codifying Department of Homeland Security (DHS) authority to administer the implementation of information security policies for non-national security federal Executive Branch systems. This includes providing technical assistance and deploying technologies to such systems.