Oversight of States' Medicaid Information Systems Security Controls
Centers for Medicare & Medicaid Services is responsible for ensuring that appropriate security controls have been implemented over States' Medicaid information systems. Prior OIG audits reported that States lack sufficient security features, potentially exposing Medicaid beneficiary health information to unauthorized access. We will determine whether the States safeguarded Medicaid data and supporting systems in accordance with Federal requirements. We will review general controls and use OIG's automated assessment tools to assess controls for their information system networks, databases, and web-facing applications.
Announced or Revised | Agency | Title | Component | Report Number(s) | Expected Issue Date (FY) |
---|---|---|---|---|---|
Completed | Centers for Medicare & Medicaid Services | Oversight of States' Medicaid Information Systems Security Controls | Office of Audit Services | A-07-16-00486; A-06-16-05000; A-07-16-00486; A-07-16-00486; A-09-16-03001; A-09-16-03002; A-18-16-30520; A-18-16-30520; W-00-16-41015; various reviews |
2019 |