COGNOS BI
Date signed: 5/9/2022
| PIA Questions | PIA Answers |
|---|---|
OPDIV: | CMS |
PIA Unique Identifier: | P-6000700-306793 |
Name: | COGNOS BI |
The subject of this PIA is which of the following? | Major Application |
Identify the Enterprise Performance Lifecycle Phase of the system. | Operate |
Is this a FISMA-Reportable system? | Yes |
Does the system include a Website or online application available to and for the use of the general public? | No |
Identify the operator: | Agency |
Is this a new or existing system? | Existing |
Does the system have Security Authorization (SA)? | Yes |
Date of Security Authorization | 6/16/2022 |
Indicate the following reason(s) for updating this PIA. Choose from the following options. | PIA Validation (PIA Refresh/Annual Review) |
Describe in further detail any changes to the system that have occurred since the last PIA. | The COGNOS system has no changes at this time. |
Describe the purpose of the system | Cognos is a Business Intelligence application that provides the Centers for Medicare & Medicaid Services with a wide range of business intelligence functionality on a single web services-based architecture. Cognos offers a complete range of business intelligence functionality, including reporting, analysis, dashboarding, scorecarding and event management. Also, the system delivers a single metadata layer and a single query engine, providing Centers for Medicare & Medicaid Services with a single source reporting tool for all relevant data and a complete and consistent view of any business issue or driver. |
Describe the type of information the system will collect, maintain (store), or share. (Subsequent questions will identify if this information is PII and ask about the specific data elements) | Cognos Business Intelligence software is used to report on customer data. Cognos Business Intelligence acts only as a conduit (e.g., pass through) between the Centers for Medicare & Medicaid Services maintained data stores and the verticals. Cognos utilizes the Centers for Medicare & Medicaid Services Enterprise User Administration and Identity Management System which are covered by separate Privacy Impact Assessments for this system user identification and authentication. Those systems are responsible for storing and maintaining user's credentials. Cognos stores user's credentials and validates users against the required job codes in order to grant the user access to vertical-specific information during their active session. The only information Cognos store is user's identification to verify user's job codes during their session. The information that is pass through between the Centers for Medicare & Medicaid Services maintained data stores and the verticals may include: Social Security Numbers, Medical Notes, Date of Birth, Mailing Address, Name, Phone Numbers, Medical Records, Health Insurance Claim Number, Unique Physician Identification Number, Race, Sex, Diagnosis Codes, and Procedure codes. The systems mentioned here are covered by their own Privacy Impact Assessment and Authority to Operate. |
Provide an overview of the system and describe the information it will collect, maintain (store), or share, either permanently or temporarily. | Cognos Business Intelligence tool provides authorized Centers for Medicare & Medicaid Services users with a single point of access to application and data resources. Business Intelligence enables access and analysis of information to improve and optimize decisions and performance. It offers a web-based window into applications or information that a user is authorized to access, without regard to their network connection based on their security access role to the data. The information/data that is shared among systems is collected and stored within those Centers for Medicare & Medicaid Services systems and may include personal identifiable information. As such, each Centers for Medicare & Medicaid Services system is responsible for maintaining the security of the personal identifiable information and corresponding Privacy Impact Assessment. Cognos stores user's credentials and validates users against the required job codes in order to grant the user access to vertical-specific information during their active session. Cognos uses the Enterprise User Administration and the Identity Management System for system user identification and authentication. User credential information is collected at user logon and is passed to Enterprise User Administration for verification and validation before the user is able to log into the system. Cognos will validate the job codes and based on the codes in Enterprise User Administration will grant user access. The systems mentioned here are covered by their own Privacy Impact Assessment and Authority to Operate. |
Does the system collect, maintain, use or share PII? | No |
Users Explanation: | Users are given developer privileges as they are using Cognos to develop reports. Cognos provides mechanisms for them to retrieve data from another system. |
Administrators Explanation: | Administrators may access personal identifiable information in order to manager user accounts. |
Developers Explanation: | Developers may access personal identifiable in order to perform system updates. |
Contractors Explanation: | Direct contractors, in their roles as an administrator or developer, may have access to personal identifiable information as described in those role explanations. |
Session Cookies - Collects PII?: | No |