(ISC)2 HCISPP | HealthCare Information Security and Privacy Practitioner
HCISPP focuses on implementing, managing, and assessing security and privacy controls for healthcare and patient information.
Schedule + Register
About this Course
Led by an (ISC)2 authorized instructor, the following course is an official (ISC)2 training seminar for the HealthCare Information Security and Privacy Practitioner (HCISPP) certification, which confirms a practitioner’s core knowledge and experience in security and privacy controls for personal health information.Register now
The training and provided course material for this official (ISC)2 training seminar will teach students about protecting organizations and sensitive patient data from emerging threats and breaches. Additionally, this course will also help students successfully prepare for the HCISPP exam as it provides a comprehensive review of healthcare security and privacy concepts and industry best practices, covering the 7 domains of the HCISPP Common Body of Knowledge (CBK).
Aside from a reserved seat in an upcoming HCISPP training seminar, the resources provided to students include (ISC)2’s official courseware and Study tools which include the HCISPP flashcards and student handbook. When you combine (ISC)2’s instructor-led training with the provided course material, this HCISPP training seminar is a great resource for those interested in passing the HCISPP exam or simply review and refresh their healthcare information security and privacy knowledge.
- 3 Days of HCISPP Training from an Authorized (ISC)2 Instructor
- Official (ISC)2 HCISPP Training Courseware
- Official (ISC)2 HCISPP Student Guide
- 60 Days of OnDemand Access to the Recordings of your HCISPP Session (Video & Audio)
- NOTE: for Live Online training events only.
*A HCISPP certification exam voucher is available for an additional fee ($599 USD)
This (ISC)2 authorized HCISPP training seminar is based on the seven HCISPP domains of the (ISC)2 Common Body of Knowledge (CBK), ensuring students successfully prepare for the HCISPP exam and enhance their overall competencies in healthcare security and privacy.
- Domain 1: Healthcare Industry
- Domain 2: Information Governance in Healthcare
- Domain 3: Information Technologies in Healthcare
- Domain 4: Regulatory and Standards Environment
- Domain 5: Privacy and Security in Healthcare
- Domain 6: Risk Management and Risk Assessment
- Domain 7: Third-Party Risk Management
Domain 1: Healthcare Industry
- Understand the Healthcare Environment Components
- Understand Third-Party Relationships
- Understand Foundational Health Data Management Concepts
Domain 2: Information Governance in Healthcare
- Understand Information Governance Frameworks
- Identify Information Governance Roles and Responsibilities
- Align Information Security and Privacy Policies, Standards and Procedures
- Understand and Comply with Code of Conduct/Ethics in a Healthcare Information Environment
Domain 3: Information Technologies in Healthcare
- Understand the Impact of Healthcare Information Technologies on Privacy and Security
- Understand Data Life Cycle Management
- Understand Third-Party Connectivity
Domain 4: Regulatory and Standards Environment
- Identify Regulatory Requirements
- Recognize Regulations and Controls of Various Countries
- Understand Compliance Frameworks
Domain 5: Privacy and Security in Healthcare
- Understand Security Objectives/Attributes
- Understand General Security Definitions and Concepts
- Understand General Privacy Definitions and Concepts
- Understand the Relationship Between Privacy and Security
- Understand Sensitive Data and Handling
Domain 6: Risk Management and Risk Assessment
- Understand Enterprise Risk Management
- Understand Information Risk Management Framework (RMF)
- Understand Risk Management Process
- Identify Control Assessment Procedures Utilizing Organization Risk Frameworks
- Participate in Risk Assessment Consistent with the Role in Organization
- Understand Risk Response
- Utilize Controls to Remediate Risk
- Participate in Continuous Monitoring
Domain 7: Third-Party Risk Management
- Understand the Definition of Third-Parties in Healthcare Context
- Maintain a List of Third-Party Organizations
- Apply Management Standards and Practices for Engaging Third-Parties
- Determine When a Third-Party Assessment is Required
- Support Third-Party Assessments and Audits
- Participate in Third-Party Remediation Efforts
- Respond to Notifications of Security/Privacy Events
- Respond to Third-Party Requests Regarding Privacy/Security Events
- Promote Awareness of Third-Party Requirements
Intrinsec’s Concierge Service focuses on you, providing a personalized human experience with one of our concierge representatives to ensure that you have a perfect experience from day one and beyond.
Not only will your representative reach out to you when you sign up, providing you with all the information you need, but they will also be on stand-by for any and all questions you may have.
After you have completed your class your concierge representative can provide you with relevant recommendations for upcoming events, discounts on training, and suggestions to help further your career.
The intended audience for the HCISPP training program is professionals with practical healthcare experience, as well as a foundation in information security, privacy or risk. Typically speaking, HCISPP is ideal for those working in roles such as, but not limited to:
- Compliance Officer
- Information Security Manager
- Privacy Officer
- Compliance Auditor
- Risk Analyst
- Medical Records Supervisor
- Information Technology Manager
- Privacy and Security Consultant
- Health Information Manager
- Practice Manager
What do I need to get my HCISPP certification?
To qualify for your HCISPP certification you will need a minimum of two years of cumulative paid work experience in one or more of the seven domains covered in the HCISPP Common Body of Knowledge (CBK).
What if I don’t yet have that experience?
Not to worry! If you don’t yet have that work experience, as you may become an Associate of (ISC)2 by passing the HCISPP exam. From there, you can work towards accumulating work experience to get your full fledged HCISPP certification!
What counts towards paid work experience?
Paid work experience can come from full-time, part-time or even internships (internships can be paid or unpaid). Each of these categories are defined as:
- Full-Time Experience: A minimum of 35 hours/week, this experience is accursed monthly, meaning 4 weeks of 35 hours or more equals one month of experience.
- Part-Time Experience: Between 20 and 34 hours/week, with the hours logged converting to full-time experience as such:
- 1040 hours of part-time = 6 months of full-time experience
- 2080 hours of part-time = 12 months of full-time experience
- Internships: Internship experience can be paid or unpaid to qualify. Documentation on company/organization letterhead confirming your position is required.
Is there anything else I need to get my HCISPP certification?
The last step to getting HCISPP certified is to get endorsed by others, this simply ensures that your claimed professional experience is true and that you are in good standing in the cybersecurity industry.
Have more questions? Read our Frequently Asked Questions page or simply send your questions to us directly via our Contact Us page or our Live Chat and we will be more than happy to assist with any and all questions!