businessman and business woman reviewing document

CLA is now approved to provide services using the HITRUST CSF, a comprehensive security framework that helps health care organizations comply with health care, third-party, and government regulations and standards.

CLA happenings

CLA Achieves HITRUST CSF Assessor Designation for Health Care Organizations

  • 3/30/2016

Minneapolis — March 29, 2016 — CliftonLarsonAllen LLP (CLA), a national professional services firm, announced that it has been designated as a HITRUST CSF Assessor by the Health Information Trust Alliance (HITRUST). With this achievement, CliftonLarsonAllen is now approved to provide services using the HITRUST CSF, a comprehensive security framework that addresses the multitude of security, privacy, and regulatory challenges facing health care organizations in order to comply with health care (HIPAA, HITECH), third-party (PCI, COBIT), and government (NIST, FTC) regulations and standards. 

“We are proud to have achieved this designation as a HITRUST CSF Assessor,” said Randy Romes, an information security principal with CLA. “As CSF Assessors, we now are able to assist health care organizations with the process of adopting and utilizing the CSF's requirements and give customers confidence in the protection of their information.” 

CSF Assessors are critical to help uphold information security and privacy standards for the health care industry. They are a core component of the HITRUST CSF program by providing trained resources to health care organizations of varying size and complexity to assess compliance with security control requirements and document corrective action plans that align with the CSF. CSF Assessors such as CliftonLarsonAllen serve as a key component of the program by providing assessment and remediation services. 

“As health care reform continues to evolve, we must ensure that we are here to serve the challenges the industry faces,” said Mike Slavik, the principal in charge of health care. “This designation enables us to further support our clients as they strive to adapt to the changing environment and tackle the ever-increasing threats to the security of their information.”


Founded in 2007, the Health Information Trust Alliance (HITRUST) was born out of the belief that information protection should be a core pillar of, rather than an obstacle to, the broad adoption of health information systems and exchanges. HITRUST - in collaboration with public and private healthcare technology, privacy and information security leaders - has championed programs instrumental in safeguarding health information systems and exchanges while ensuring consumer confidence in their use. 

HITRUST programs include the establishment of a common risk and compliance management framework (CSF); an assessment and assurance methodology; educational and career development; advocacy and awareness; and a federally recognized cyber Information Sharing and Analysis Organization (ISAO) and supporting initiatives. Over 84 percent of hospitals and health plans, as well as many other healthcare organizations and business associates, use the CSF, making it the most widely adopted security framework in the industry. For more information, visit For further information, please contact Leslie Kesselring, HITRUST PR Representative, at 503-358-1012 or

About CLA

CLA exists to create opportunities for our clients, our people, and our communities through industry-focused wealth advisory, outsourcing, audit, tax, and consulting services. With more than 6,200 people, 120 U.S. locations and a global affiliation, we promise to know you and help you. Investment advisory services are offered through CliftonLarsonAllen Wealth Advisors, LLC, an SEC-registered investment advisor.