Wipfli LLP: Earns HITRUST Common Security Framework Assessor designation

Press Contact

Jennifer Hacker Olsen


[email protected]


Milwaukee, Wisconsin (April 25, 2013) — Wipfli LLP (Wipfli) recently announced that the Health Information Trust Alliance (HITRUST), a leading authority on the protection of health information, has designated the firm as a Common Security Framework (CSF) Assessor. Wipfli is one of a small number of CSF Assessors across the country.

CSF Assessors are those organizations that have been approved by HITRUST for performing assessments and services associated with the CSF Assurance Program and the CSF, a comprehensive security framework that incorporates the existing security requirements of health care organizations.

“As the health care industry moves toward integrated delivery systems that will encompass virtual technologies and works to comply with ever-evolving security regulations, it has never been more vital to ensure the security of health care information,” said Steve Thompson, partner in charge of Wipfli’s health care practice. “Wipfli’s health care practice has long been a leader in helping health care organizations across the country to overcome challenges faced in the marketplace so they can focus on helping patients and achieve success.”

Wipfli has several seasoned information security professionals who are committed to supporting HITRUST’s services, including Bob Cedergren, partner in charge of Wipfli’s Risk Advisory and Forensics Services, and senior managers and managers Rick Ensenbach, Paul Johnson, Jay Malmquist, and Austin Lentz.

“Securing health care information in today’s environment can be a major challenge,” said Cedergren. “Being recognized by HITRUST for our security experience and qualifications among a very small group of firms demonstrates the strength of our information technology security experts and our leadership in the marketplace. We are thrilled to have earned this designation and look forward to continuing to help our health care clients with their information security strategies in 2013 and beyond.”

“Due to the firm’s extensive expertise and leadership in health IT privacy and security solutions, Wipfli is a great addition to our elite group of CSF Assessors,” said Ken Vander Wal, Chief Compliance Officer, HITRUST. “This designation is a demonstration of the firm’s commitment to help health care organizations adopt and utilize the CSF’s requirements for protecting information.”

About Wipfli LLP

With more than 1,100 associates, 22 offices in the United States, and two offices in India, Wipfli LLP (Wipfli) ranks among the top 23 accounting and business consulting firms in the nation. For over 83 years, Wipfli has provided private and publicly held companies with industry-focused assurance, accounting, tax and consulting services to help clients overcome their business challenges today and plan for tomorrow. The firm’s clients include health care organizations, construction companies, contractors and developers, real estate companies, manufacturing companies, financial institutions, insurance companies, nonprofit organizations, units of government, dealerships, and individuals. Through the firm’s membership in PKF North America, Wipfli can draw upon the resources of 264 firms in 120 countries around the world. For more information, visit http://www.wipfli.com.


The Health Information Trust Alliance (HITRUST) was born out of the belief that information security should be a core pillar of, rather than an obstacle to, the broad adoption of health information systems and exchanges. HITRUST, in collaboration with health care, business, technology, and information security leaders, has established the Common Security Framework (CSF), a certifiable framework that can be used by any and all organizations that create, access, store, or exchange personal health and financial information. Beyond the establishment of the CSF, HITRUST is also driving the adoption of and widespread confidence in the framework and sound risk management practices through awareness, education, advocacy, and other outreach activities. For more information, visit http://www.HITRUSTalliance.net.