skip to Main Content

HITRUST CSF Certification "One-to-One" Healthcare Compliance Find out how BEYOND LLC can help you achieve your goals!
BEYOND LLC Recent Events...getting back in the groove

ISACA (Chicago Chapter) Efficient use of Frameworks including HITRUST
Join Ray Biondo, EVP CIO and Sean Brennan, Sr Director HITRUST Services Thursday, October 15th for a Webinar as they discuss security frameworks, specifically HITRUST for all types of organization.  Register at

BEYOND Sponsors Paubox SECURE
Cathlynn Nigh, CEO will be presenting at Paubox SECURE event, October 21 – 22, 2020.  Join her as she discusses NIST Privacy Framework.  BEYOND LLC is also a Gold Sponsor for this event.  Register at–



  • Let BEYOND LLC work with your organization to obtain a HITRUST CSF Certification through a Validated Assessment. We are a small boutique firm that is committed to our clients. Beyond LLC is devoted to providing high quality, professional work at an affordable cost. Customer satisfaction is our #1 goal.


  • BEYOND LLC can work with your organization to become HITRUST Certified quickly and inexpensively. The BEYOND Suite of Tools can reduce the amount of resources your Organization will need to apply in preparing to present to Executive Leadership, or developing policies and procedure documentation. BEYOND LLC is here to help you along the journey.


  • BEYOND LLC can provide your organization with the Information Security experience you seek. BEYOND can also participate through performing independent analysis, developing business cases, in an advisory capacity, on oversight boards; and if required can serve as a member of your trusted executive team.  The BEYOND LLC Information Security team has the experience and trust you desire.


  • BEYOND LLC can work with your IT organization to help it run as a more efficient business unit. Our goal is to have your organization gain greater value from your IT investment. Providing the IT comprehensions and talents your organization requires; we can bring in innovative answers while we maintain current operations. BEYOND LLC can bring its CIO expertise to your team!

What is new with BEYOND LLC ... and within the HITRUST world

BEYOND LLC is growing…
We are pleased to announce we have added three new CCSFP consultants to our top-notch Validation Team. With our new members, each will bring their own unique experiences, while allowing BEYOND LLC to expand our services on both the Validation Team and the Security Team to meet our client needs. We wish our new team members much success!

Covid 19 continues…
With the upswing of the virus, BEYOND LLC is following the guidelines set out by HITRUST pertaining to the required site-visit. At this time HITRUST still has the required visit still on hold. Currently, there is no guidance on when this may change. BEYOND continually checks with HITRUST for updates and will keep our clients and prospective clients in the loop.

HITRUST will be updating the CSF to version 10. The current target for this new version is December, 2020 through March, 2021. There will be many great changes to the CSF within this new version. In addition to being required to meet all 135 controls, Domains will be eliminated with focus on Control Categories. As we get closer to the release date, and BEYOND LLC learns more details, we will post the information.

Additional Note…
With so many changes happening in our everyday world, please reach out to us with any questions you may have or any guidance you may need. We want to be part of your team as you successfully obtain (or maintain) your HITRUST certification.

    Fill in your information below and then download our white paper, “Audit Once Use Many...the benefits of a HITRUST Certification”.

    About Us


    BEYOND LLC’s focus is to create individualized compliance programs for all organizations – whether you are a startup or an established company.  Our goal is to help organizations innovate, transform and be successful.

    BEYOND LLC is a HITRUST Certified CSF assessor organization.  The organization and its team of professional IT consultants are led by Cathlynn Nigh, a compliance specialist with 20 years of experience in risk, internal audit, information security and regulatory administration. Cathlynn and her team are all highly-trained Certified CSF Practitioners who focus includes:

    • Healthcare Assessments
    • Vulnerability & Risk Assessment
    • Security Risk Management
    • Executive CXO Strategy and Advisory Services

    This specialization offers clients the kind of expertise and attention that streamlines the process and delivers cost- and time-efficient solutions for your company.

    BEYOND LLC is an SBA woman-owned business. Our specialized focus and deep expertise sets us apart from other firms.  We look forward to working with you for your companies success.


    BEYOND LLC is a SBA certified Woman Owned Small Business (WOSB). In choosing BEYOND, in addition to working with a high quality professional team, your organization may obtain additional benefits by engaging with a woman owned service provider.

    One such example is selected tax incentives. The federal government provides possible tax breaks for companies that utilize woman owned businesses. Also, there is a second tax incentive that may reduce tax liabilities for companies that use woman owned businesses for a project funded with federal or state grants or loans.



      Subscribe to our newsletter to learn more about Beyond LLC

      We have locations in

      • Chicago, IL
      • New York, NY
      • Orlando, FL
      • Philadelphia, PA
      About HITRUST

      The Health Information Trust Alliance (HITRUST) was born out of the belief that information security should be a core pillar of, rather than an obstacle to, the broad adoption of health information systems and exchanges.

      HITRUST, in collaboration with healthcare, business, technology and information security leaders, has established the HITRUST CSF, a certifiable framework that can be used by any and all organizations that create, access, store or exchange personal health and financial information.

      The CSF is an information security framework that harmonizes the requirements of existing standards and regulations, including federal (HIPAA, HITECH), third party (PCI, COBIT) and government (NIST, FTC). As a framework, the CSF provides organizations with the needed structure, detail and clarity relating to information security tailored to the healthcare industry.

      Whether your organization deals directly or indirectly with the health care industry, HITRUST certification is good for your business:

      • Helps you manage regulatory compliance and risk management
      • Opens access to prospective clients who require their vendors to be HITRUST Certified
      • Once in place, certification can be renewed, budgeted and managed

      Kevin Livelsberger joins BEYOND LLC as Vice President and CISO

      Chicago Illinois, September 16, 2019 – BEYOND LLC, a woman owned HITRUST CSF Assessor Organization…

      read more

      BEYOND LLC Facilitates another HITRUST Community Extension Program Event hosted by Aim Specialty Health and Blue Cross Blue Shield Association

      Chicago Illinois, January 23, 2019 – BEYOND LLC, a woman owned HITRUST CSF Assessor Organization…

      read more

      Three Mistruths about the Anthem Breach and HITRUST CSF Certification

      Ray Biondo Senior Vice President and CISO BEYOND LLC It has been dismaying to follow…

      read more

      How Cathlynn Nigh Is Going Above and BEYOND the Competition

      From American Healthcare Leader (AHL): When Cathlynn Nigh worked in compliance and internal audit at…

      read more

      Cathlynn Nigh

      Ms. Nigh is the CEO of BEYOND LLC. BEYOND is a woman owned and operated consulting firm that is specific to performing HITRUST Assessments. BEYOND provides their clients a personalized “one to one” approach to the highest level of service and quality...
      read more

      Ray Biondo

      Executive Vice President, Chief Technology Officer
      Mr. Biondo is Executive Vice President, Chief Technology Officer to BEYOND LLC. Ray is a senior IT executive with over 30 years of experience in the specialized field of Information Technology. He has led application development teams,...
      read more

      Kevin Livelsberger

      Vice President, Chief Information Security Officer
      Kevin Livelsberger is the Vice President, Chief Information Security Officer for BEYOND LLC. He recently joined the BEYOND Team from Medecision, Inc where he was the Senior Director of Security. Mr. Livelsberger’s expertise is...
      read more

      Sean Brennan

      Senior Director, HITRUST Services
      Mr. Brennan is the Senior Director of HITRUST Services for BEYOND LLC. He joined BEYOND in 2016 as a lead assessor and has quickly grown within the firm eventually becoming Sr. Manager and now Senior Director. Mr. Brennan’s responsibilities include program development...
      read more


      Becoming HITRUST Certified should not be a burden on your people or your budget. At BEYOND LLC, we will walk with you through the process, and provide as much assistance as you require:

      • The process might start with a PRE-ASSESSMENT.  This will give an indication of the current state of your IT and data security. This usually takes just a few days; and if minor gaps are found, your internal team might be able to correct them.
      • Your Organization may want to take a deeper dive into your IT and data security framework which BEYOND would then work with your team and complete a FACILITATED SELF-ASSESSMENT.  This step will give you an even stronger understanding of the current state of your security and privacy controls.  A review of the work is completed by HITRUST with an overall report issued.  Again, if gaps are found, could correct prior to a full validated assessment.
      • A full VALIDATED ASSESSMENT completed by BEYOND follows the process as defined by HITRUST.  This assessment will take a closer examination in assessing your IT systems, firewalls, data protection and much more – with the end-goal of a HITRUST CSF Certification. In some cases, the Validated Assessment results in a Corrective Action Plan (CAP) that identifies corrections needed to achieve certification, along with a timetable for handling.
      • If a CORRECTIVE ACTION PLAN (CAP) results from the Validated Assessment, BEYOND can assist your internal team in resolving the CAP issues.
      • BEYOND can remain your resource for the INTERIM REVIEW and the RENEWAL OF YOUR HITRUST CERTIFICATION, including scheduled reviews to ensure that the CAP issues have been resolved.


      BEYOND can also complete projects pertaining to HIPAA; PCI DSS (as a QSA, ISA and PCIP); SOX (audit readiness and support); NERC (audit readiness and support); ISO 27001; ISO 20000-1; NIST SP 800:53A; NSA IAM; Risk Assessments relating to OCTAVE, NIST SO 800:30 rev. 1; and Security Assessments operating NSA IAM, IEM.

      BEYOND CISO Executive Advisory Service

      Let BEYOND put our CISO executive leadership and security knowledge to work for your organization. Our CISO service offers you access to a team of professionals that can provide subject matter expertise to your existing or new information security program.

      As a team we can determine and analyze your security needs, then develop and manage your security program on an ongoing basis. We will quickly gain knowledge of where security gaps exist in your organization. With our mature and vast knowledge of the security industry, we will go to work to solve these problems for you with results that you can rely on.

      Having access to a dedicated resource with years of security experience can be a valuable asset to your organization. Through on-site and remote work, we will help you achieve your security goals in an efficient and cost-effective manner. We will provide the expertise you need to create an effective information security program, and can help you manage that program with the staff and resources you have in place.

      BEYOND LLC offers CISO advisory services that include:

        • Security Assessments
          1. People, Process, and Technology
        • CISO as a Service
          1. Develop Security Function
          2. Get the right people doing the right thing
          3. On-site as needed
          4. Assist with CISO search
        • Executive Leadership/Board of Directors
          1. Attend or become member of the BOD
          2. Develop Board level reports
          3. Instruct / Train on Information Security Leadership

      BEYOND Suite of Tools

      BEYOND has developed a SUITE OF TOOLS that can help you reach HITRUST Certification as efficiently as possible.  BEYOND will work with your company in integrating one or all aspects of the ‘SUITE‘ so the new tools will work with what your organization already has in place.

      This ‘SUITE OF TOOLS‘ includes:

      • Materials for use in presenting HITRUST to Executive Leadership and Board of Directors
      • Policies and Procedures in line with HITRUST fundamentals
      • Templates and Forms required for compliant operations
      • Workflows that your organization can readily adopt

      BEYOND CIO Executive Advisory Service

      The BEYOND LLC Chief Information Officer (CIO) Advisory Services Division will help organizations construct value through definition, prioritization, and execution of an agreed technology transformation roadmap…a roadmap that is well-versed by the inclusion of the organizations desired business capabilities.

      CIOs constantly struggle with their IT organization’s inability to align the core business framework with an IT strategy. It is a challenge to articulate the business benefits of large technology initiatives, which far to often fail to deliver on the business case.

      BEYOND LLC offers CIO advisory services that include:

      • Transformation roadmap: To develop a transformation roadmap that aligns business and IT objectives
      • Technology innovation: To develop a strategy to modernize the company’s technology landscape
      • IT expenditure optimization: To develop a strategy and execution plan to optimize IT costs.  We guarantee that we can save your company 20% or more on your annual IT spend.
      • Application portfolio rationalization: To develop a rationalization strategy for apps based on alignment to core business processes
      Years of Healthcare Experience
      Companies Helped
      in the Industry