The SSAE 18 Reporting Standard – SOC 1 – SOC 2 – SOC 3 (Formerly SSAE 16) Support and Guidance for SSAE18, SOC 1, SOC 2, and SOC 3 reporting standards (formerly SSAE 16) 
The SOC 1 has a completely different purpose than HITRUST. Typically a company would perform both if they are a TPA processing medical claims and other claims, where, there is responsibility for financial reporting and maintaining security over the information being handled.
← SSAE Report Frequently Asked Questions December 8, 2021