• Skip to primary navigation
  • Skip to main content
  • Skip to footer
Hartman Executive Advisors

Hartman Executive Advisors

Business & IT Strategy Consulting Firm

  • Business Strategy Consulting
  • IT Management Consulting
  • IT Strategy Consulting
  • Risk Management Consulting
  • Telehealth
  • About
    • Careers
    • Community
    • Our Team
    • Testimonials
  • Services
    • Business Strategy Consulting
      • CIO Consulting Services
      • CISO Consulting Services
      • Interim Executive Placement Services
      • M&A Advisory
      • Telehealth Consulting Services
      • IT Coaching & Mentoring
      • Organizational Development
      • Process Engineering
    • Risk Management Consulting
      • CMMC Compliance Services
      • Cyber Risk Assessment
      • Governance, Risk and Compliance
      • Incident Response Planning
      • IT Due Diligence
    • IT Management Consulting
      • Change Management
      • IT Portfolio Management
      • Vendor Selection & Management
    • IT Strategy Consulting
      • Core Banking System Selection
      • FinTech Consulting Services
      • IT Strategy Assessment
      • Software Evaluation
      • Software Selection
      • Virtual Event Technology
  • Industries
    • Construction
    • Education
    • Financial Services
    • Government Contracting
    • Healthcare
    • Human Services
    • Manufacturing, Retail & Distribution
    • Nonprofit & Association
    • Real Estate
    • State & Local Government
  • Resources
    • Blog
    • Case Studies
    • eBooks
    • Executive Technology Survey Results
    • Maryland CIO Roundtable
    • Speaking Engagements
  • Contact Us
(410) 587-0064 Request a Consultation
(410) 587-0064 Request a Consultation

CRISP

› Case Studies › CRISP
Industry: Healthcare

Mitigating data-related risks and achieving compliance is key for regulated industries

As a Health Information Exchange, the Chesapeake Regional Information System for our Patients (CRISP) facilitates the safe collection and transfer of data between healthcare organizations, allowing those organizations to focus on their core missions: providing high-level care to their patients.

Managing healthcare data means CRISP is regulated under HIPAA and must have someone in the role of Chief Information Security Officer (CISO). For the past several years, Hartman has filled that role, overseeing the organization’s security focus, partnering to assess and strengthen their data safety and HIPAA adherence, and developing a structure for mitigating related risks.

Due to increased pressure from regulators requiring healthcare organizations to maintain stronger data controls, CRISP and Hartman worked together to look for a more systematic method for maintaining the organization’s information risk management and regulatory compliance systems. It was decided that the best approach would be to acquire a security-focused certification. Becoming certified would require CRISP to complete a rigorous review process, make corrections to eliminate any gaps they discovered, and implement the stringent approach needed for monitoring, measuring and decreasing security risks.

CRISP chose the HITRUST certification, one that is intended specifically for the healthcare environment. Working with Hartman, CRISP implemented the controls, policies and processes necessary to achieve the certification. As hackers and their tools become more sophisticated, regulations will change, as will the requirements needed to maintain the HITRUST certification. CRISP and Hartman will work together, adjusting their controls and approaches to remain compliant and to continually improve their security posture relative to their risks.

“Healthcare data is extremely valuable to those who use it for the right reasons as well as those who use it for personal gain,” says Brandon Neiswender, CRISP’s Vice President and Chief Operations Officer. “Our partnership with Hartman allows us to maintain a strong focus on security, while providing services our participants rely on.”

Previous Case Study
Next Case Study

Footer

It's Time to Reach Out
Are you ready for independent IT Leadership?
Contact Us

Hartman Executive Advisors

1954 Greenspring Drive Suite 320 Timonium, MD 21093
410-587-0064

Services

  • Business Strategy Consulting
  • Risk Management Consulting
  • IT Management Consulting
  • IT Strategy Consulting

Resources

  • Blog
  • Case Studies
  • eBooks
  • Executive Technology Survey Results
  • Maryland CIO Roundtable
  • Speaking Engagements
Sign Up for Our Newsletter
Subscribe to Hartman Executive Insights
  • This field is for validation purposes and should be left unchanged.

© 2023 Hartman Executive Advisors · Powered by 321 Web Marketing · Website Privacy Policy & Terms of Use