Skip to main content
Image coming soon

CMP5814 Mastering HIPAA for Senior Compliance Leaders

$199.00
Adding to cart… The item has been added

A tailored course, built for your situation

Mastering HIPAA for Senior Compliance Leaders

Build deeper command of HIPAA’s structure, controls, and real-world application across complex health data environments.

$199 one-time
24-hour access provisioning 30-day money-back guarantee Hand-built implementation playbook
12 modules. 12 chapters per module. 144 chapters total.
12 modules, each with 12 chapters (144 chapters total), text-based, plus downloadable templates and a hand-built implementation playbook delivered alongside course access.
Most HIPAA training stops at compliance checkboxes, but seasoned practitioners need to anticipate how rules apply across evolving data architectures.

The situation this course is for

Generic courses don’t reflect the depth of decision-making required when handling cross-system data flows, enforcement precedents, or novel use cases. Practitioners with long-cycle experience deserve training that matches their level of exposure.

Who this is for

Senior privacy and compliance leaders with 10+ years in healthcare regulation, particularly those who shape policy, oversee audits, or lead vendor risk decisions.

Who this is not for

Entry-level compliance staff, one-time auditors, or professionals outside healthcare data regulation.

What you walk away with

  • Map HIPAA controls to technical and administrative systems with confidence
  • Anticipate regulator expectations in complex or edge-case scenarios
  • Structure compliance workflows that compound across audits and reviews
  • Explain deviations and design choices using authoritative sources and precedent
  • Own internal training and policy updates without senior review

The 12 modules (with all 144 chapters)

Module 1. The Anatomy of HIPAA
Break down the structure of the Privacy Rule, Security Rule, and Breach Notification Rule into actionable components. Understand how each regulation layer applies to data storage, access, and transmission.
12 chapters in this module
  1. Origins of the HIPAA framework
  2. Core components of Title II
  3. Privacy Rule scope and applicability
  4. Security Rule technical safeguards
  5. Administrative safeguards deep dive
  6. Physical safeguards overview
  7. Breach Notification Rule thresholds
  8. Enforcement Rule penalties and history
  9. Definition of a covered entity
  10. Business associate relationship rules
  11. Minimum Necessary Standard application
  12. Safe harbor under de-identification
Module 2. Mapping the Privacy Rule
Walk through real-world patient data workflows and apply Privacy Rule standards. Learn how to document permitted uses and disclosures with precision.
12 chapters in this module
  1. Permitted versus required disclosures
  2. Patient rights under HIPAA
  3. Authorization form requirements
  4. TPO purposes defined
  5. Marketing and fundraising exceptions
  6. Psychotherapy notes special handling
  7. Accounting of disclosures process
  8. Right to amend records
  9. Right to request restrictions
  10. Right to receive paper copy
  11. Notice of Privacy Practices standards
  12. Language access and translation rules
Module 3. Security Rule Technical Safeguards
Apply encryption, access controls, and audit logs to real healthcare IT environments. Build defensible configurations aligned with NIST and OCR guidance.
12 chapters in this module
  1. Unique user identification
  2. Access control policies
  3. Role-based access design
  4. Emergency access procedures
  5. Automatic logoff settings
  6. Encryption standards for data at rest
  7. Encryption standards for data in transit
  8. Decryption capability assurance
  9. Audit controls implementation
  10. Mechanism to authenticate ePHI
  11. Transmission security overview
  12. Integrity control methods
Module 4. Administrative Safeguards Deep Dive
Structure policies, risk analyses, and workforce training that stand up to regulator review. Create living compliance programs.
12 chapters in this module
  1. Security management process
  2. Risk analysis best practices
  3. Risk mitigation planning
  4. Sanction policy enforcement
  5. Information system activity review
  6. Workforce training requirements
  7. Workforce compliance oversight
  8. Evaluation standard application
  9. Business associate agreements
  10. BAI oversight process
  11. Contingency planning scope
  12. Data backup and storage
Module 5. Breach Assessment and Response
Apply the four-factor test to real incidents. Document breach determinations with regulator-ready reasoning.
12 chapters in this module
  1. Definition of a breach
  2. Four-factor risk assessment
  3. Low probability of compromise
  4. Unauthorized acquisition test
  5. Harm not required for breach
  6. Notification timelines
  7. Individual notification rules
  8. Media notification triggers
  9. HHS reporting thresholds
  10. State law preemption analysis
  11. Documentation of determination
  12. Internal escalation path
Module 6. Vendor Risk and BA Agreements
Structure business associate agreements that enforce liability and ensure downstream compliance.
12 chapters in this module
  1. Defining a business associate
  2. BA agreement required elements
  3. Subcontractor liability chain
  4. Right to audit clause design
  5. Data return or destruction terms
  6. Enforcement precedent review
  7. Cloud service provider rules
  8. Email provider compliance
  9. Hosting provider obligations
  10. Software vendors as BAs
  11. BAI risk scoring system
  12. Third-party assessment workflow
Module 7. Compliance Program Design
Build repeatable compliance frameworks that scale across systems and organizational changes.
12 chapters in this module
  1. Compliance program lifecycle
  2. Policy development workflow
  3. Control mapping technique
  4. Compliance calendar planning
  5. Audit preparation process
  6. Internal monitoring system
  7. Corrective action tracking
  8. Leadership reporting format
  9. Resource allocation strategy
  10. Third-party audit coordination
  11. Regulator inspection readiness
  12. Continuous improvement loop
Module 8. Audit and Enforcement Trends
Review OCR enforcement cases and identify patterns in regulator priorities and findings.
12 chapters in this module
  1. Top audit findings history
  2. Common Security Rule failures
  3. Privacy Rule complaint origins
  4. Breach reporting violations
  5. Most frequent financial penalties
  6. Settlement agreement analysis
  7. Corrective action plans
  8. State attorney general actions
  9. HIPAA-HITECH intersection
  10. Enforcement discretion examples
  11. Largest settlements breakdown
  12. Emerging OCR priorities
Module 9. State Law Interactions
Navigate conflicts between HIPAA and state privacy laws. Apply preemption rules accurately.
12 chapters in this module
  1. State law preemption framework
  2. Stricter privacy laws
  3. Consumer protection statutes
  4. Data breach notification laws
  5. Health privacy laws by state
  6. Minors’ consent rules
  7. Mental health records laws
  8. Substance use disorder rules
  9. Workers’ compensation conflicts
  10. Law enforcement disclosure rules
  11. Judicial order handling
  12. Attorney-client privilege
Module 10. Emerging Technologies and HIPAA
Apply HIPAA rules to AI, telehealth platforms, and cloud-based analytics.
12 chapters in this module
  1. AI-driven analytics compliance
  2. Telehealth data handling
  3. Remote monitoring systems
  4. Wearable device data
  5. Mobile app risk assessment
  6. Chatbot use in healthcare
  7. Natural language processing
  8. Cloud-based EHR systems
  9. Blockchain for health data
  10. API security design
  11. De-identification for research
  12. Synthetic data use cases
Module 11. Training and Workforce Management
Develop role-specific training programs that meet HIPAA requirements and build organizational awareness.
12 chapters in this module
  1. Role-based training matrix
  2. Annual training requirement
  3. Security awareness content
  4. Phishing simulation use
  5. New hire onboarding
  6. Refresher training timing
  7. Manager accountability
  8. Disciplinary action policy
  9. Third-party training
  10. Documentation standards
  11. Training effectiveness review
  12. Culture of compliance
Module 12. Continuous Improvement and Future-Proofing
Adapt HIPAA programs to future regulatory shifts and organizational growth.
12 chapters in this module
  1. Change management process
  2. Policy version control
  3. Control monitoring system
  4. Regulatory scanning workflow
  5. Industry peer benchmarking
  6. Internal audit frequency
  7. Feedback loop integration
  8. Leadership review cadence
  9. Technology refresh planning
  10. Compliance documentation archive
  11. Knowledge transfer strategy
  12. Succession planning

How this maps to your situation

  • Preparing for OCR audit
  • Managing third-party risk
  • Updating legacy compliance program
  • Scaling compliance across systems

Before vs. after

Before
Relying on generalized checklists and past precedent without a structured framework for applying HIPAA across novel systems or data flows.
After
Confidently mapping, explaining, and defending HIPAA compliance decisions using deep structural knowledge of the rules and enforcement history.

What's included with your purchase

  • 12 modules with 12 chapters each (144 chapters)
  • Downloadable templates and worked examples for every module
  • Hand-built implementation playbook delivered alongside course access
  • 30-day money-back guarantee

Delivery and format

  • Course and learning environment access provisioned within 24 hours of purchase
  • Hand-built implementation playbook delivered alongside course access

Format: Text-based modules and chapters in the Art of Service learning environment, plus downloadable templates and worked examples for every chapter, plus the hand-built implementation playbook delivered alongside course access.

Time investment: 60 hours of self-paced learning, designed for completion over 8 weeks with 6-8 hours per week.

If nothing changes
Without deeper command of HIPAA's structure and intent, even experienced leaders may default to reactive compliance, missing opportunities to shape policy, lead audits, or influence system design with authority.

How this compares to the alternatives

Unlike generic HIPAA overviews that end at basic checklists, this course is built for practitioners with long-cycle experience, focusing on structural mastery, enforcement precedent, and real-world decision frameworks.

Frequently asked

Who is this course for?
Senior privacy officers, compliance leads, and healthcare regulators with at least 5 years of direct HIPAA experience.
How is the course structured?
12 modules, each containing 12 chapters (144 chapters total).
Is there a certificate of completion?
Yes, a certificate is issued upon finishing all modules and passing the final assessment.
$199 one-time. 60 hours of self-paced learning, designed for completion over 8 weeks with 6-8 hours per week..

Within 24 hours your account in the learning environment is provisioned and the tailored implementation playbook is delivered alongside it.

30-day money-back guarantee· 144 chapters· Hand-built playbook included· Account access within 24 hours