The SOC 1 has a completely different purpose than HITRUST. Typically a company would perform both if they are a TPA processing medical claims and other claims, where, there is responsibility for financial reporting and maintaining security over the information being handled.
What are the SOC 2 criteria?
The five SOC 2 criteria are Security, Availability, Processing Integrity, Confidentiality, and Privacy.