Search
Close this search box.
Subscribe to RCE news

Part V – QHIN Privacy and Security Requirements

Part I – Basic Applicant Information

Question 1 

Part II – Organizational Requirements

Question 2 Question 3

Part III – Exchange of Required Information and Ability to Perform Functions of a QHIN

Question 4
Question 5
Question 6
Question 7
Question 8
Question 9
Question 10
Question 11
Question 12
Question 13

Part IV – Organizational Infrastructure and Legal Authority

Question 14 Question 15 Question 16 Question 17 Question 18 Question 19 Question 20 Question 21 Question 22 Question 23 Question 24 Question 25 Question 26 Question 27 Question 28 Question 29 Question 30 Question 31 Question 32 Question 33 Question 34

Part V – QHIN Privacy and Security Requirements

Question 35 Question 36 Question 37 Question 38 Question 39 Question 40 Question 41 Question 42 Question 43

Part VI – Project Plan

Question 44

Part VII - Background References

Question 45
Question 46

Part VIII - Attestation

Question 47

Question 40.

For the Designated Network, submit a copy of the most recent security Plan of Action and Milestones (POA&M) (or equivalent) showing appropriate mitigation efforts in response to moderate and high findings of the most recent security assessment and/or technical audit. If the POA&M contains IP addresses or any other identifiable information that is considered confidential or of a sensitive nature, for example, a host name and the specific vulnerability associated with that host name, please redact such information. If you do not have evidence of the most recent security POA&M (or equivalent) at the time of application, please address in the project plan required in Part VI of this application how you will fulfill this obligation prior to conformance testing.

"*" indicates required fields

Hidden

Drop files here or
Accepted file types: xls, xlsx, pdf, doc, docx, Max. file size: 50 MB.

    Stay Connected

    Complete the form below and join our mailing list.