Security Risk Analysis

You can attest to the Security Risk Analysis measure in your Healthmonix MIPSpro account.

Description

Conduct or review a security risk analysis in accordance with the requirements in 45 CFR 164.308(a)(1), including addressing the security (to include encryption) of ePHI data created or maintained by certified electronic health record technology (CEHRT) in accordance with requirements in 45 CFR 164.312(a)(2)(iv) and 45 CFR 164.306(d)(3), implement security updates as necessary, and correct identified security deficiencies as part of the MIPS eligible clinician’s risk management process.

*This measure remains part of the requirements for the Promoting Interoperability performance category, but will no longer receive points toward the total PI score.

Reporting Requirements

To meet this measure, MIPS-eligible clinicians must attest YES to conducting or reviewing a security risk analysis and implementing security updates as necessary, and correcting identified security deficiencies.

In your Healthmonix MIPSpro account, you can attest to the measure. Click Save when finished.

Healthmonix_PI_Security_Risk_Analysis_Attest.png