Security Risk Analysis

Although CMS removed Security Risk Analysis as a Promoting Interoperability measure, MIPS-eligible clinicians are still required to attest to performing a security risk analysis during the performance year. We’re providing you with information about this pseudomeasure because it’s frequently the subject of MIPS audits.