Online Access Free CCSFP Exam Questions

Which of the following does HITRUST certify?

• A.All of the above
• B.Facilities
• C.Products
• D.Implemented Systems
• E.People

In an r2 assessment, if the responsibility for a Requirement Statement is split between the client and one or more service providers, should only the service provider scores be used?

• A.No, you should mark this Requirement Statement N/A as it has been outsourced
• B.Yes, these are the most important scores
• C.No, take a blended approach to scoring and consider the responsibilities for all parties involved
• D.No, you should only score the client's portion of the responsibility
• E.No, because this never happens

If an organization has a policy against uploading sensitive data to third parties, what option would facilitate providing evidence to the HITRUST QA team to support maturity level scoring?

• A.Onsite visit by QA team
• B.Escalated QA
• C.Live QA
• D.QA Tasks

Upon submission of an assessment object by the assessor, how many days does HITRUST take to either accept or reject the assessment?

• A.1-2 days
• B.14 days
• C.7 days
• D.3-5 days

An r2 certification is good for how many years?

• A.Until there has been a significant change in the in-scope environment
• B.Two years regardless
• C.Two years provided an interim assessment is performed, all CAPs have been remediated, and all N/As discharged
• D.Two years provided an interim assessment is performed and interim requirements are met