HMH Maestro

Payor Updates

When to Perform a Security Risk Analysis for MIPS

Hackensack Meridian Health Partners

What You Need To Know

While a Security Risk Analysis (SRA) is not a Promoting Interoperability (PI) stand-alone measure for 2019, MIPS-eligible clinicians must attest YES to conducting or reviewing a security risk analysis and implementing security updates as necessary and correcting identified security deficiencies. 

Failure to complete these required actions will result in no score for the PI category.

Four Criteria To Meet When Completing an SRA

It is acceptable for the SRA to be conducted or reviewed outside the performance period, but the analysis must:

For More Information

For more details, review the 2019 MIPS Promoting Interoperability – Security Risk Assessment fact sheet.