CMS is no longer interested in meaningful use, but interoperability. One of the tenets of the Stage 3 plan is a Security Risk Analysis. Your organization must attest that:
- A security Risk Analysis as been completed based upon OCR’s “Guidance on Risk Analysis”.
- Create an action plan to safeguard the confidentiality, integrity and availability of ePHI.
- Measure the impact of threats and vulnerabilities to your patient’s electronic information.
Here’s Your Next Step…