• Online, Self-Paced

The course reviews the processes, procedures, methodologies, and controls for ensuring the security program of a healthcare organization adheres to the HIPAA Security Rule and the HIPAA Privacy Rule.

Learning Objectives

In this course, students will learn the procedures and protocols needed to implement and ensure a security program that is compliant with the Health Insurance Portability and Accountability Act (HIPAA) Security Rule and Privacy Rule. By the end of the course, students should be able to:
- Understand the HIPAA Security, Privacy, and Enforcement Rules
- Demonstrate knowledge of the components necessary for an organization to achieve HIPAA compliance
- Demonstrate knowledge of the processes, procedures, methodologies, and controls required by the HIPAA standard to protect PHI and ePHI.
- Demonstrate knowledge of how a security leader might help an organization early in its information security program, prepare, plan, execute, and test its ability to protect the privacy and security of patient data while improve patient care and wellbeing.

Framework Connections

The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):

Specialty Areas

  • Program/Project Management and Acquisition
  • Strategic Planning and Policy

Specialty Areas have been removed from the NICE Framework. With the recent release of the new NICE Framework data, updates to courses are underway. Until this course can be updated, this historical information is provided to give better context as to how it can help you with your cybersecurity goals.

Feedback

If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.