New York, NY (May 8, 2012) — Epstein Becker Green has been designated by the Health Information Trust Alliance (HITRUST) as a Common Security Framework (CSF) Assessor. This will allow the firm to provide health care organizations with privacy and security risk assessments to protect the entities from breaches of protected health information (PHI). The health care industry has accepted the HITRUST CSF as the most widely adopted security framework. Epstein Becker Green is the first law firm to become a CSF Assessor and the designation exemplifies the firm's distinct capability to identify and address risk for health care industry clients.

HITRUST provides resources, tools, education, and training to develop and maintain effective security programs for health care and life sciences companies that comply with security laws, regulations, and standards including HITECH, HIPAA, PCI, JCAHO, CMS, ISO, NIST, and various other federal, state, and business requirements.

"The California Security Breach Notification Law, which includes nominal damages of $1,000 per person effected, has resulted in numerous multi-billion dollar private plaintiff actions against health care providers, payers, and business associates. HITRUST represents the gold standard for demonstrating that an organization has implemented an effective privacy and security risk management program. We are extremely pleased to offer this service to our clients in our capacity as legal advisors," said Robert Hudock, Member of the Health Care and Life Sciences practice in the Washington, D.C., office.

"Health care organizations are facing increased challenges in securing patient medical information given the need to make this information electronically accessible and connected wherever it is needed or authorized. Epstein Becker Green understands the need to protect our clients from potential breaches in security, which is why we found it imperative to receive this certification. We will continue to evolve our services as the market demands it," said Mark Lutes, Member of the Health Care and Sciences practice in Washington, D.C., and a leader of EBG Advisors, an affiliation of Epstein Becker Green.

EBG Advisors, Inc. is a Washington, D.C. based consultancy that navigates the obstacles facing health care and life sciences companies. EBG Advisors is a network of international attorneys, policy analysts, strategists, and other professionals that specialize in the health care and life sciences. This organization provides coordinated guidance and solutions across various segments of the health care industry. Examples of this include taking medical devices to market, creating policy solutions, or navigating FDA regulations.


The Health Information Trust Alliance (HITRUST), in collaboration with health care, business, technology, and information security leaders, has established the Common Security Framework (CSF), a certifiable framework that can be used by any and all organizations that create, access, store, or exchange personal health and financial information. Beyond the establishment of the CSF, HITRUST is also driving the adoption of and widespread confidence in the framework and sound risk management practices through awareness, education, advocacy, and other outreach activities.

About Epstein Becker Green

Epstein Becker & Green, P.C., is a national law firm with a primary focus on health care and life sciences; employment, labor, and workforce management; and litigation and business disputes. Founded in 1973 as an industry-focused firm, Epstein Becker Green has decades of experience serving clients in health care, financial services, retail, hospitality, and technology, among other industries, representing entities from startups to Fortune 100 companies. Operating in locations throughout the United States and supporting domestic and multinational clients, the firm’s attorneys are committed to uncompromising client service and legal excellence.  For more information, visit

Media Contact

Jump to Page

Privacy Preference Center

When you visit any website, it may store or retrieve information on your browser, mostly in the form of cookies. This information might be about you, your preferences or your device and is mostly used to make the site work as you expect it to. The information does not usually directly identify you, but it can give you a more personalized web experience. Because we respect your right to privacy, you can choose not to allow some types of cookies. Click on the different category headings to find out more and change our default settings. However, blocking some types of cookies may impact your experience of the site and the services we are able to offer.

Strictly Necessary Cookies

These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.

Performance Cookies

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies we will not know when you have visited our site, and will not be able to monitor its performance.