MARS-E COMPLIANCE
State Health Exchanges are required to adhere to security requirements published by the U.S. Centers for Medicare & Medicaid Services (CMS). Part of that includes a yearly assessment of exchange security and privacy controls. The number of controls that need to be assessed each year can run from approximately 200 to over 1000.
In prior years, organizations could find a security firm that would simply audit the required environment. However, today, CMS requires both an assessment of the intended controls AND a penetration test to ensure that what is intended by the Exchange is actually in place and working.
The firm that provides your annual MARS-E (Minimum Acceptable Risk Safeguards for Exchanges) assessment needs to be a specialist not only in healthcare security and privacy auditing but also must be a highly experienced penetration testing firm capable of advanced penetration testing. JANUS is that firm.
Why Choose JANUS
State Healthcare Exchange cyber assessments of all types, including MARS-E and FISMA assessments, are specialty areas in JANUS’ consulting practice and have been since JANUS began providing security assessments for CMS itself over 20 years ago.
With our full-time subject matter experts, never subcontractors, we undertake multiple assessments each year to meet client-specific schedules in a cost-effective manner. We have a long, well-respected history of producing quality results, working with CMS on your behalf, and walking you through the entire process successfully. CMS has trusted us for our audit, testing results, and accurate reports for over 20 years.
Speak with us and find out why 20% of states requiring MARS-E compliance trust JANUS and have awarded us multiple-year contracts.
Request a Consultation