View Press Releases

Clearwater Adds NIST CSF 2.0 and PCI DSS Assessments to IRM|Performance™ Module in IRM|Pro® Software Suite

July 21, 2024

Addition of industry-proven frameworks powers better visibility into cybersecurity program performance and compliance and helps healthcare organizations mature their cybersecurity capabilities to protect against rising cyberattacks 

NASHVILLE, TN – July 22, 2024 – Clearwater, healthcare’s largest pure-play provider of comprehensive cybersecurity and compliance solutions, today announced the integration of the Payment Card Industry Data Security Standard (PCI DSS) and National Institute of Standards and Technology Cybersecurity Framework (NIST CSF) 2.0 into its IRM|Performance SaaS solution introduced earlier this year. The frameworks added to IRM|Performance represent a significant advancement in Clearwater’s IRM|Pro software suite, further strengthening its position as the premier solution for helping healthcare organizations improve their cybersecurity programs while also assessing and managing cyber risk and ensuring compliance with key industry standards and regulations. 

  

The inclusion of PCI 4.0 and NIST CSF 2.0 standards in the IRM|Performance module helps organizations better protect sensitive information and achieve compliance with these critical frameworks. PCI DSS is essential for organizations that handle credit card transactions; it applies widely across healthcare providers, hospitals, and health systems, ensuring that cardholder data is protected from breaches and fraud. NIST CSF 2.0 – released in February 2024 – provides a comprehensive framework for achieving cybersecurity performance outcomes and for managing cybersecurity risk. NIST CSF 2.0  incorporates the latest best practices and guidelines to enhance organizational security posture. The inclusion of these frameworks powers Clearwater’s PCI DSS Compliance and NIST CSF Performance and Maturity Assessments, delivered by Clearwater’s industry-leading consulting team. 

  

Key benefits of IRM|Performance include: 

Improved Security Posture: Inclusion of key frameworks provides robust tools and resources to help organizations identify, assess, and mitigate cybersecurity risks, bolstering their overall security posture. 

  

Holistic View of Risk and Cybersecurity Maturity: Combining assessments like NIST CSF Performance and Maturity Assessments and Information Asset-Level Risk Analyses in a single software platform gives users visibility to their complete cybersecurity program maturity and cyber risk profile, identifies and prioritizes gaps that need remediation, and offers analytics to demonstrate risk reduction and maturity over time.  

  

Streamlined Processes: Cross-mapping between compliance and security frameworks reduces duplication across assessments and powers efficiency so security leaders can gain visibility into their cybersecurity posture, risks, and vulnerabilities more quickly and expedite the implementation of controls and improvement strategies.   

  

“A NIST CSF Maturity Assessment, powered by IRM|Performance, gives healthcare leaders the kind of insights and analytics they need to share a powerful narrative and outline a path to cybersecurity maturity and resilience,” says Jon Stone, Clearwater’s Chief Product Officer and architect of the IRM|Pro software suite. “When they can view this picture next to their risk data from an asset-based risk analysis, it’s the best way for leaders to evaluate their current cybersecurity posture and make meaningful progress to a more secure, compliant, and resilient state.” 

  

The IRM|Pro software suite, including the new release of the IRM|Performance module, is designed to help healthcare organizations manage risk, achieve compliance, and protect sensitive information. With these latest enhancements, Clearwater continues to lead the industry in delivering innovative, high-quality services and solutions that address the complex challenges of cybersecurity and compliance. 

  

“Healthcare organizations face growing cybersecurity threats; some of the worst cyberattacks have occurred in the last six months,” says Clearwater CEO Steve Cagle. “And yet, security leaders still face resistance and often struggle to gain the needed resources to safeguard and secure their organizations. We’re working alongside healthcare leaders to help them solve these issues, embed cybersecurity across their organizations, and gain the buy-in they need from the board and their executive leadership team.” 

  

For more information about Clearwater and the IRM|Pro software suite, please visit https://clearwatersecurity.com/software-solutions/. 

  

About Clearwater 

  

Clearwater helps organizations across the healthcare ecosystem move to a more secure, compliant, and resilient state so they can achieve their missions. The company provides a deep pool of experts across a broad range of cybersecurity, privacy, and compliance domains, purpose-built software that enables efficient identification and management of cybersecurity and compliance risks, managed cloud services, and a 24/7 Security Operations Center with managed threat detection and response capabilities. To learn more, please visit www.clearwatersecurity.com.