GRC Mapping Security Controls to the HITRUST framework Mapping your security controls to the HITRUST Common Security Framework (CSF) is