Complying with Data Exchange Requirements in NY

April 14, 2020

11am – 12:00pm CT

Reserve your seat

During this webinar, two senior members of Clearwater’s Consulting Services team will review the key components of the requirement and share insight on how to proceed drawing on our vast experience using NIST SP 800-53 controls to help healthcare organizations build best-in-class cybersecurity programs.

Overview

The New York State Department of Health (“DOH”) Data Exchange Application and Agreement requires that business partners who desire access to DOH provided Medicaid data must adhere to the following: 

  • Submit the Critical Controls Attestation Form (notarized) to the Systems Security and Privacy Bureau following a self-assessment   
  • Address all gaps identified during the self-assessment by either remediating or planning the remediation formally documented via a Plan of Action and Milestone  
  • Within six months following the self-assessment, engage an independent third-party to audit the plan and provide a formal audit report and an updated SSP Attestation against the NIST SP 800-53 controls

During this webinar, two senior members of Clearwater’s Consulting Services team will review the key components of the requirement and share insight on how to proceed drawing on our vast experience using NIST SP 800-53 controls to help healthcare organizations build best-in-class cybersecurity programs.

cathie-brown2
adam-nunn
Cathie Brown
VP, Consulting Services, Clearwater
Adam Nunn

Senior Principal Consultant, Clearwater

Contact us today to speak to one of our experts about how we can help your organization.