Home User Manual Discussion Forum Search

EHR Objective 1: Protect Electronic Health Information

This information applies to EHR Modified Stage 2 for Program Years 2015 to 2018. For current information, see:

Measure: Conduct or review a security risk analysis (SRA) to identify which security policies and procedures are in place and risks that need to be addressed. The analysis must be documented in a security risk analysis report.

Exclusion Available?



From CMS:

From Open Dental:


This is a Yes/No measure and not based on a percentage calculation.

Setup / Instructions

The security risk analysis should occur prior to, or during, your first reporting period, and then again for each subsequent reporting period.

Open Dental Software 1-503-363-5432