HITRUST Bets on Trust With New C-Suite Role. Is Your Company Next?

FRISCO, Texas – June 02, 2026 – When a company known for selling cybersecurity assurance creates a new C-suite position called "Chief Trust Officer," it’s more than just a personnel announcement. It’s a market signal. HITRUST, a major player in the world of compliance and risk management, did just that today, appointing veteran technology executive Myrna Soto to the newly created role.

On the surface, it’s a strategic hire. Dig a little deeper, however, and you find a story that’s not just about one company, but about a fundamental shift in our digital economy. For years, I’ve analyzed company reports, looking for the narrative hiding in the numbers. This move by HITRUST tells a compelling one: "trust," once a soft and intangible concept, is rapidly becoming a hard, measurable, and mission-critical asset. The question is no longer if companies need to manage trust, but how—and who is in charge of it.

The Rise of the Trust Imperative

Why now? Why is the C-suite suddenly making room for a "Trust Officer"? The data points are all around us, converging into a perfect storm of risk. First, there's the explosive, and often chaotic, adoption of Artificial Intelligence. While promising unprecedented innovation, AI also introduces new vectors for bias, error, and misuse, creating what many analysts call a "black box" problem at the heart of corporate decision-making.

Then there is the ever-expanding digital supply chain. The average enterprise relies on hundreds, if not thousands, of third-party vendors for everything from cloud hosting to customer service software. Each one of those partners is a potential point of failure, a back door for a cyberattack. We’ve seen the devastating impact of this in supply chain attacks that have crippled major corporations. This has elevated Third-Party Risk Management (TPRM) from a niche IT concern to a recurring nightmare for boards of directors.

Finally, regulators are closing in. From the EU’s AI Act to the SEC’s intensifying scrutiny of cybersecurity disclosures, governments are no longer accepting vague promises of security. They are demanding proof, transparency, and accountability. This confluence of AI risk, supply chain vulnerability, and regulatory pressure has created a "trust deficit" that companies can no longer ignore. In response, a new C-suite role is emerging, one designed not just to manage security or privacy in silos, but to orchestrate trust across the entire organization.

A Strategic Play for the Future of Assurance

For HITRUST, this environment is both a challenge and a massive opportunity. The company has built its reputation on a rigorous, harmonized framework (the HITRUST CSF) that helps organizations meet dozens of different standards—from healthcare's HIPAA to Europe's GDPR—through a single, validated assessment. Its claim of a 99.62% breach-free rate among certified environments is a powerful, data-driven argument for its effectiveness.

But in a market crowded with competing standards like SOC 2 and ISO 27001, simply having a good framework isn't enough. The appointment of a Chief Trust Officer is a strategic play to elevate the conversation beyond technical compliance. It’s a move to sell not just a product, but a philosophy. By bringing in a high-profile leader like Soto, HITRUST is positioning itself as the definitive authority on how to build, measure, and govern trust in this new era.

The goal is to engage directly with the stakeholders who are now feeling the most pressure: boards, regulators, and executive leadership. As HITRUST's CEO, Gregory Webb, stated, "Myrna brings a rare combination of operational leadership, governance expertise and strategic vision. Having served as both a Fortune 500 executive and public company director, she understands how boards, executive teams and stakeholders evaluate risk, resilience and trust." His statement underscores the strategy: this isn't about selling another compliance tool to the IT department; it's about providing a strategic solution for governance to the boardroom.

The Architect of Trust: A Look at Myrna Soto

To understand the significance of this move, you have to look at the resume of the person they hired. Myrna Soto is not a typical cybersecurity leader. She is a governance powerhouse. Her 30-year career spans roles as the Global Chief Information Security Officer for Comcast and CISO for MGM Resorts International, giving her deep operational experience in complex, highly regulated industries.

But it’s her experience outside the CISO chair that truly tells the story. Soto is the founder of an executive advisory firm, serves on the boards of major public companies like CMS Energy and TriNet, and holds the SEC-recognized designations of Qualified Financial Expert (QFE) and Qualified Risk Expert (QRE). These aren't just acronyms; they are credentials that signify an ability to translate complex technological risks into the language of financial impact and strategic business decisions—the native language of the boardroom.

She is, in essence, the human bridge between the server room and the boardroom. Her appointment signals that trust is no longer a conversation to be delegated, but one to be led from the very top. As Soto herself put it, "Having served as both an executive operator and public/private company board director, I have seen how trust increasingly influences business performance, resilience, and stakeholder confidence. Third-party risk management is no longer solely a security or compliance issue—it has become a governance and business priority."

Beyond Compliance: Operationalizing a Priceless Asset

Soto’s mission, as outlined by HITRUST, is to counsel organizations on how to "think more strategically about how they build, measure and sustain trust." This is the key shift. For too long, security and compliance have been viewed as a cost center, a series of boxes to be checked to avoid fines. The new paradigm, championed by the rise of the Chief Trust Officer, reframes this work as a strategic investment.

In this model, trust becomes a manageable and measurable asset that drives tangible business value. A company that can demonstrably prove it is a trustworthy steward of customer data, a reliable partner in the supply chain, and an ethical user of technology gains a powerful competitive advantage. It can attract and retain customers, command premium pricing, and navigate regulatory landscapes with greater confidence.

HITRUST is making a calculated bet that the market is ready for this evolution. By appointing a leader with the unique credibility of Myrna Soto, the company is not just filling a role; it is making a statement about the future of business itself. It’s a declaration that in an increasingly complex and uncertain digital world, the most valuable asset any company can possess is the one that is hardest to build and easiest to lose: trust.