Main Menu


The health care industry is constantly under threat from new and aggressive cyber attacks and attempts to breach network security. At the same time, federal and state regulations for safeguarding patient data are becoming more stringent. Health care providers often need the assistance of professionals to advise on the complicated and time-consuming task of implementing advanced security protocols and confirming their practices follow leading industry guidelines.

Brown Smith Wallace is the first St. Louis-based firm approved to provide services using the HITRUST CSF®, the most widely-adopted security framework in the U.S. health care industry. We have an internal team of experts who are certified to provide HITRUST CSF assessments and consultation for your organization.

The HITRUST CSF Assurance Program allows our experts to deliver a streamlined compliance assessment and reporting data for HIPAA, HITECH, state and business associate requirements. We can provide health care organizations and their business associates with a coordinated approach to help you manage security assessments, create efficiencies and minimize costs related to varied assurance requirements.

We provide a variety of HITRUST CSF assessments to satisfy the needs of your clients including:

  • CSF Security Assessment
  • CSF Security & Privacy Assessment
  • CSF Comprehensive Security Assessment
  • CSF Comprehensive Security & Privacy Assessment
  • NIST Cybersecurity Assessment

We also coordinate HITRUST assessments such as:

  • SOC 2 + HITRUST CSF Certification
  • HITRUST CSF Self-Assessment
  • HITRUST CSF Validated Assessment (Certification)

What is HITRUST?

The HITRUST Alliance is a not-for-profit organization whose mission is to champion programs that safeguard sensitive information and manage information risk for organizations across all industries and throughout the third-party supply chain.

They have created the HITRUST CSF, a comprehensive privacy and security framework that addresses the multitude of security, privacy and regulatory challenges facing organizations in order to comply with health care (HIPAA, HITECH), third-party (PCI, COBIT), government (NIST, FTC) and other industry-specific regulations and standards.

Learn More

Visit to learn more about the HITRUST certification and how it can benefit you.

Contact Us

Contact Greg Smith, Partner, Advisory Services at or 314.983.1306 for more information on getting started with a HITRUST Assessment.

Thought Leadership


Meet Our Team

Schedule a Meeting

Back to Page