- NIST HIPAA Security Rule Toolkit
- Security Risk Assessment Tool (SRA Tool)
- Technical Safeguards [DOCX - 240 KB]
- Top 10 Tips for Cybersecurity in Health Care
By the way – yes, I downloaded and reviewed the current version of the HITRUST framework.
On another note, HITECH has nothing to do with technical controls and is an unfortunate name. It's confusing, but it's entire focus is enforcement – putting teeth into HIPAA using financial penalties as an incentive. Please do not use it out of context.