Understanding the Difference Between HIPAA and HITRUST

Aug 9, 2023 Continuum GRC 0 Comment

Featured GRC blog image - top trends in cybersecurity and risk management for 2025 AI-powered cybersecurity 2025 zero trust ransomware protection supply chain security regulatory compliance operational resilience

Within the world of healthcare compliance and information security, there’s been increasing confusion around some terms and organizations. We’ve heard a bit about some of this confusion, specifically around HITRUST and HIPAA.

Both are connected to the preservation of health information, yet they fulfill separate functions and are founded on differing principles. This article clarifies the differences between these two. Whether a healthcare practitioner or a business associate, this guide will describe where HITRUST fits into overall compliance (if at all).

Awareness Continuum GRC

What Are the Evaluation Criteria for JAB Prioritization?

Aug 2, 2023 Continuum GRC 0 Comment

FedRAMP compliance featured image - cloud security GRC platform for government contracts AI-powered cybersecurity 2025 zero trust ransomware protection supply chain security regulatory compliance operational resilience

The Federal Risk and Authorization Management Program (FedRAMP) plays a pivotal role in safeguarding the security of cloud services within the U.S. federal government. An essential element of this program is the Joint Authorization Board (JAB), which is responsible for prioritizing and authorizing cloud offerings offered by cloud providers.

The JAB prioritization process is a methodical approach to selecting the most impactful CSOs for a JAB Provisional Authorization to Operate (P-ATO). This process holds significance for upholding the integrity of federal cloud services and shaping the future of cloud technology within the government sector.