Since a HITRUST Certification is costly, and there is no official certification for HIPAA compliance

answered Feb 18, 2020 by LarryWrig (500 points)

answered Feb 18, 2020 by lulumeon (40,870 points)

The closest thing HIPAA has is the annual Enterprise Risk Assessment or ERA which is as the OP notes is not a certification but is useful in preparing for both the HITRUST and SOC 2 examinations.

Once your annual enterprise assessment is good, plan to work through SOC2 and eventually HITRUST.

Most BAA and CEs will accept, at least the annual assessment as proof of overall compliance and most would prefer to see your SOC2, even if its bi-annual.

If you have a client that will only accept HITRUST you should point out the very low overall passrate and pass on the opportunity until your organization is more mature.

answered Jul 1, 2020 by Pojiloy (260 points)
edited Jul 6, 2020 by Pojiloy

I am also interested in this question, thank you for your comments. I really want to become a certified specialist to get a remote job in a good company. I have small children, so I can't work in an office yet. But I really need an extra income, because my husband doesn't earn enough to pay for the children's education. Therefore, I am interested in finding reliable courses to get a certification and a good remote job with great income. By the way, I am studying information about network administration and have already found a service (https://cciedump.spoto.net/) where students can get help with exams. Because I've heard that these exams are very difficult and students need help to prepare for them. I think I'm on the right way.

Since a HITRUST Certification is costly, and there is no official certification for HIPAA compliance

Please log in or register to add a comment.

Please log in or register to answer this question.

3 Answers

Please log in or register to add a comment.

Please log in or register to add a comment.

Please log in or register to add a comment.