ARS 3.1 Compliance

Get-Secure-Stay-Protected-Prove-It-No-Outline

CMS Acceptable Risk Safeguards (ARS) v3.1

The Centers for Medicare & Medicaid Services (CMS) Information Security and Privacy Acceptable Risk Safeguards (ARS) provides direction and guidance to CMS and its contractors as the minimum level of acceptable security controls known as the CMS Minimum Security Requirement [CMSR] baselines. 

How CimTrak Aligns With ARS

CimTrak aligns with ARS by providing the necessary check and balances of security functionality and security assurance of over a quarter of all the ARS controls.

Of the 26 ARS control families and 489 total controls, CimTrak aligns with 15 families and 134 controls by providing an automated scan or enabling a process, procedure, or policy to assist with the evidence collection to meet the objective of a defined control family. CimTrak refers to this as a crosswalk.

  • Access Control (AC)
  • Audit and Accountability (AU)
  • Configuration Management (CM)
  • Contingency Planning (CP)
  • Incident Response (IR)
  • Maintenance (MA)
  • Media Protection (MP)
  • Risk Assessment (RA)
  • Authorization (CA)
  • System and Communications Protection (SC)
  • System and Information Integrity (SI)
  • System and Services Acquisition (SA)
  • Accountability, Audit and Risk
    Management (AR)
  • Data Quality and Integrity (DI)
  • Data Minimization and Retention DM)

In the example shown, CimTrak provides the meta-level information associated to a pass or failed compliance scan including description, rationale, impact CIS reference, and the expected value. In the event of a failed scan, CimTrak also provides the steps to remediate to a passing status.

Canva Design DAEhBTiR-FY

How CimTrak Helps with ARS v3.1

Complete Integrity Monitoring

Instant notification and in-depth insight into all changes. Complete coverage for your environment and many ARS requirements

Automated Configuration Monitoring

Monitor critical configurations to ensure you are in compliance with ARS.

Complete Perimeter Protection

Monitor your environment. Don’t let unauthorized access occur with your routers, firewalls, and network devices.

Simplify ARS v3.1 Compliance

See for yourself how to make your systems truly secure and compliant.