Skip to main content
Two businessmen having a discussion in an office.

What Is the Difference Between SOC 2 & HITRUST?

In this video, Ryan Boggs, breaks down the difference between SOC 2 & HITRUST.
banner background

A common question our advisors receive is, what is the difference between SOC 2 and HITRUST? While SOC 2 is a framework set forth by the AICPA that lists broad criteria for companies to meet based on their own service commitments and system requirements, the HITRUST CSF set forth by the HITRUST Alliance contains a precise list of specified requirements that an organization’s information security program needs to meet to be able to achieve a defined level of compliance.

Watch this short video as Forvis Mazars Principal Ryan Boggs dives into the differences of each.

Related FORsights

Like what you see?
Subscribe to receive tailored insights directly to your inbox.