🔥 3-day streak
CompTIA PenTest+ (PT0-003)44 / 175
Question 44 of 175
A penetration testing firm is finalizing pre-engagement paperwork for a hospital network. During testing, the team will access servers that store and process electronic protected health information (ePHI). The hospital's compliance officer wants to ensure the firm is legally bound to safeguard this data and to specify permitted uses, breach notification obligations, and safeguards. Which document must be executed to satisfy this HIPAA requirement before testing begins?
Reviewed for accuracy · Report an issueNext question