HITRUST, an information risk management and certification body, recently announced the release this month of a new version of its cybersecurity framework. The HITRUST framework focuses on risk management and compliance with data privacy rules, including HIPAA. The new version of the HITRUST framework enables the HITRUST assessment portfolio to better protect against evolving cyber threats. Several health care companies, such as Spiras Health, SmartStory, Zeldis Research Associates, and Konica Minolta Healthcare have recently achieved the HITRUST risk-based, 2-year certification to mitigate risk.