What happens if, in a TPN Assessment, aspects of my security are found to fall short of the MPA Best Practices?

After the TPN assessment is complete and published, those items that are not fully compliant with MPA Best Practices are listed as remediation items (both Best Practices and Additional Recommendations) in the assessment report. In order to obtain their Gold Shield, the Service Provider is required to submit a remediation plan that includes a description of whether the non-conforming controls have already been remediated; whether they will be remediated; and the planned date of remediation (if applicable). All TPN Content Owner members will have the ability to view the remediation items and Service Provider remediation plans, and TPN Gold Content Owner members are able to indicate that the remediation item is a priority, if needed.