STANDARDIZING SECURITY ASSESSMENTS FOR HEALTH
How to use the Together Health Security Assessment (THSA)
GET SECURE TODAY
TogetherHealth Security Assessment - THSA v2019.1
(Updated 10/26/2019)
OUR SECURITY GOALS
NO NEW QUESTIONS
Use existing questions and frameworks whenever possible
USE THE BEST IN CLASS FOR SECURITY
Don’t just build for healthcare; build for security
SIMPLIFY THE PROCESS
Don’t create a process so burdensome it’s impossible to adopt (i.e. don’t make a slow process slower)
EDUCATE
Help covered entities, vendors, and other health ecosystem stakeholders understand how to prepare for and meet the standards
HOW WE GOT HERE
We analyzed hundreds of security assessments, consulted with 100+ cybersecurity experts (CIO’s, CISO’s, etc.), created a common set of questions, and mapped them to existing frameworks. We hope the Together.Health Security Assessment guidelines
Based on our research, we found that for startups (and even established entities) the process can ranges from 4 weeks to 9 months. For a company with 12 months of runway, this timeline is an innovation killer.
Project Lead
Our contributors
Join our growing list of collaborators and contributors below.
See what they’re saying
Adam Landman, MD
CIO, Brigham and Women’s Hospital
“Ensuring appropriate protection and use of healthcare data is a critical responsibility of health care organizations.
Currently every health system uses their own, unique security assessment for IT and digital health tools.
Together.Health offers a novel approach using the Secure Controls Framework that has significant potential to improve the efficiency of security reviews for both vendors and health care organizations while allowing continued use of existing assessments.”