Submitting OIG:
Report Description:
Federal law requires that each Medicare administrative contractor (MAC) have its information security program evaluated annually by an independent entity, and these evaluations must address the eight major requirements enumerated in the Federal Information Security Management Act of 2002 (FISMA). To comply with this provision, CMS contracted with PricewaterhouseCoopers (PwC) to evaluate information security programs at the MACs, using a set of agreed-upon procedures. To satisfy the requirement to evaluate the information security controls for a subset of systems, CMS expanded the scope of its evaluations to test segments of the Medicare claims processing systems hosted at the Medicare data centers, which support each of the MACs.
Date Issued:
Friday, April 22, 2016
Agency Reviewed / Investigated:
Submitting OIG-Specific Report Number:
A-18-15-30200
Component, if applicable:
Centers for Medicare & Medicaid Services
Location(s):
Agency-Wide
Type of Report:
Audit
Questioned Costs:
$0
Funds for Better Use:
$0
Number of Recommendations:
0
View Document:
| Attachment | Size |
|---|---|
 181530200.pdf | 469.91 KB |
Additional Details Link: