Step 1. Choose your MARS-E 2.0 Controls Assessment


The Centers for Medicare & Medicaid Services (CMS) has assembled a document suite of guidance, requirements, and templates known as the Minimum Acceptable Risk Standards for Exchanges (MARS-E), Version 2.0. It applies to all ACA administering entities, including exchanges or marketplaces—federal, state, Medicaid, and CHIP agencies administering the Basic Health Program—as well as all their contractors and subcontractors.

Mars-E 2.0 Privacy Controls Assessment

The Privacy control part in the MARS-E document guidance addressing the mandates of the Patient Protection and Affordable Care Act of 2010 (“ACA”).

Mars-E 2.0 Security Controls Assessment

The Security control part in the MARS-E document guidance addressing the mandates of the Patient Protection and Affordable Care Act of 2010 (“ACA”).

The Catalog of Minimum Acceptable Risk Security and Privacy Controls for Exchanges (MARS-E) has been developed by CMS from those delineated in NIST Special Publication 800-53 Rev 4 “Security and Privacy Controls for Federal Information Systems and Organizations” for Moderate systems.


Step 2. Edit / Answer / Share the Assessment


Disclaimer: the assessments are provided by Vendict “as is” for information purposes only. Any express or implied warranties, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose are disclaimed. While we endeavour to keep the information up to date and correct, we make no representations or warranties of any kind, express or implied, about the completeness, accuracy, reliability, suitability or availability with respect to the inserted assessment contained herein. Any reliance you place on such information is therefore strictly at your own risk.