The protection of health information is a national priority. As healthcare delivery systems modernize and cybersecurity threats become more sophisticated, the safeguarding of sensitive data—including Personally Identifiable Information (PII) and Protected Health Information (PHI)—is essential to upholding public trust and ensuring operational integrity. In response to these growing demands, the Centers for Medicare & Medicaid Services (CMS) has introduced Acceptable Risk Controls for ACA, Medicaid, and Provider Entities (ARC AMPE). This new framework replaces the outdated MARS-E standard and aligns healthcare risk and compliance operations with NIST SP 800-53 Rev. 5.
You may be interested in
A Federal Anchor Unmoored: Why Student Data Is at Risk
As headlines swirl around the potential elimination or drastic restructuring of the U....
Bridges to Social Justice: Storytelling, Systems, and Social Impact
A few weeks ago, I had the privilege of joining Georgetown University’s Bridges to S...
Watch: Training Is the Missing Link in Zero Trust, Says TWW’s Kenice Middleton
...
