Specifications include, but are not limited to: The State of Nevada Purchasing Division, on behalf of Silver State Health Insurance Exchange is seeking proposals from qualified vendors to develop assessment plans, assessments and reports related to requirements defined in the Framework for the Independent Assessment of Security and Privacy Controls issues by the Center for Medicare and Medicaid Services (MARCMS) services; To develop a detailed assessment plan in collaboration with the Silver State Health Insurance Exchange (SSHIX) and GetInsured, SSHIX’s technology vendor, during Phase 1 of the project. A completed Security and Privacy Assessment Plan (SAP)document shall be delivered to SSHIX for review and approval prior to the start of any assessment activities. The Independent Security Assessment Vendor shall deliver completed Security and Privacy Assessment Report (SAR) and Security and Privacy Assessment Workplan (SAW )documents to SSHIX at the completion of Phase 4 of the project, to provide ample time for review and approval before submission to CMS.
