TM Program Testimonials - HIPAA Academy · Quality Assurance and Risk Managers 8. Insurance Executives 9. Physicians and Office Managers ... Security Policies Template 3. HIPAA Remediation

Certified HIPAA Professional (CHP)2-day HIPAA Training Program

Page© All Rights Reserved || Confidential || ecfirst 1999-2016 || www.HIPAAAcademy.net

Program Testimonials“I felt the course was very beneficial to my career goals and in preparing for the exam. Lorna was a wonderful instructor who was able to guide the beginners and the experienced HIPAA attendees through the material at the same level. I would recommend the course to help ensure a broad understanding of the HIPAA regulation.”

Terri ThompsonUniversity of Kansas Physicians

“The CHP course was a well condensed course with excellent delivery of the needed regulations for my staff to be able to talk the talk and know how to walk the walk on their own. The instructor’s (Lorna Waggoner) witty jokes and delivery of the information made it easier for myself, and later my staff, to comprehend and retain the information being presented to us. I highly recommend ecfirst.”

Clint RussellMays Home Health Company

“Lorna did a fantastic job in presenting the course material. A tremendous amount of material was covered over the two-day class period and the class material segmentation helped in the learning process.”

Patricia BeardCOSTEP

“I thought the class was very informative and the instructor was excellent. Both knowledgeable and engaging.”

Sue WongKaiser Permanente

“De-mystify HIPAA with this course! There is nothing to fear here, it really does have everyone’s best interest in mind.”

Jeff HatzingerThe Joint Commission

“ecfirst’s Certified HIPAA Professional program did a great job of taking a large body of law and condensing it down to cover the aspects of the security and privacy rules that most directly impact companies that work with PHI. After taking the classes I feel confident about making HIPAA-related policy decisions that will keep our organization in compliance and ready for an audit.”

Mark AdamsLeonardoMD, Inc

1

Certified HIPAA Professional (CHP) Course Description

Learning Objectives

The Health Insurance Portability and Accountability Act (HIPAA) is about insurance portability, fraud, and administrative simplification. In this HIPAA training boot camp we examine basics of the Administrative Simplification portion of the HIPAA legislation. We examine HIPAA Transactions and Code Sets, Identifiers, Privacy and Security. It is this provision of the HIPAA regulation that is the watershed legislation for healthcare information systems.

This HIPAA provision is resulting in substantial changes in business development processes, policies and procedures for all covered entities – providers (hospitals, laboratories, and pharmacies), clearinghouses and payers.

This Certified HIPAA Professional certification training helps you better understand HIPAA’s Administrative Simplification Act as well as how to create a framework for initiating and working towards a blueprint for HIPAA compliance. From this boot camp you will learn the following about HIPAA:

♦ Understand why HIPAA requirements will cause significant changes in policies, procedures and processes within the organization in the handling of patient records.

♦ Examine how implementing HIPAA will affect the way healthcare entities organize and staff to achieve and monitor compliance with patient privacy/confidentiality needs.

♦ Step through qualifications and positioning strategies for a Privacy Officer and requirements for a Information Security Officer.

♦ Learn why HIPAA compliance is better focused as a business issue than as an IT issue, although IT will play a major role in implementing compliant systems.

♦ Review specific requirements and implementation features within each security category.

Step through how to plan and prepare for HIPAA compliance. HIPAA is about awareness first, assessment second and finally action focused on gaps identified.

Prerequisite Requirements

There is no prerequisite for this course. CHP is level 1 of HIPAA Certification. No other educational qualifications are required.

2

Target Audience

The focus of the program is to better understand the implications of HIPAA legislation and

identify crucial compliance requirements for your business.

The program is designed to focus on specific aspects of the HIPAA Administrative

Simplification Title II. It addresses HIPAA requirements in the areas of Transactions, Privacy and Security. It is strongly recommended that all key members of the enterprise

HIPAA team attend this two-day boot camp so that a common body of HIPAA knowledge

may be established. This will provide the base line to launch HIPAA implementation

initiatives.

The complete two-day Certified HIPAA Professional training class program is ideal for;

1. Healthcare Executives2. Senior Clinicians

3. Chief Information Officers4. Lawyers5. Compliance Officers6. Privacy and Security Officials7. Quality Assurance and Risk Managers8. Insurance Executives9. Physicians and Office Managers10. Pharmaceutical Company Executives11. Clinical Trial Organization Professionals.

3

The CHP Exam

Exam Grid

The Certified HIPAA Professional (CHP) exam validates knowledge and skills in the core

areas of HIPAA Administrative Simplification legislation, Transactions and Code Sets

Requirements, Privacy Requirements and Security Requirements.

Distribution of Questions

The Certified HIPAA Professional (CHP) Exam is based on 4 Areas. The percentages of each domain in the exam are defined in the following Table:

4

Exam Name Number of Questions Time Allowed Passing Score

CHP 60 60 Minutes 75%

Examination Areas Percentage of Exam

HIPAA Administrative Simplification Overview 20%

HIPAA Transactions and Code Sets 20%

HIPAA Privacy 30%

HIPAA Security 30%

Total 100%

Certified HIPAA Professional (CHP) Course Outline

Modules: 1 and 2

Book used: Certified HIPAA Professional (CHP)

Module 1: HIPAA at a Glance

♦ Estimated Implementation Costs♦ Compliance Updates – HITECH Act♦ Do The HIPAA Rules Apply To Me?♦ Business Associate Test♦ If I’m a Covered Entity or Business Associate – What Do I Do?♦ What penalties are there for violations with HITECH Act Changes?♦ Should Business Associates Fear Penalties?♦ What if State Laws Conflict?♦ How do the Privacy and Security Acts Differ?♦ What Are the Implementation Deadlines?

Module 2: What is the Privacy Rule

♦ Using and Disclosing PHI?♦ Patient Rights♦ Forms, Forms, Forms♦ Notice of Privacy Practice♦ Unique Release Situations♦ Who Are Non-Business Associate Organizations?♦ Employers – What Role Is This Anyway?♦ Government Access to PHI♦ Minimum Necessary Standard♦ Privacy – Can We Talk?♦ Arranging the Office♦ Must I Document and Provide Patient Access to Oral PHI?♦ Are Co-Workers Protected?

5

Day One

Modules: 3 and 4


Module 3: What are Transactions and Code Sets?

♦ Diagnostic and Procedure Codes♦ Physician’s Office Codes♦ Dental Codes♦ Drug Codes♦ Other Services♦ ANSI ASC X12N Standards – Huh?♦ Are Pharmacy Transactions the Same?♦ NPI, EIN, NPlanID, and NHI…Oh, my!♦ National Provider Identifier (NPI)♦ NPI Enumerator♦ National Provider System (NPS)♦ Applying for an NPI♦ EIN aka NEI aka EIN♦ National Health Plan Identifier (NPlanID)♦ National Health Identifier for Individuals (NHI) (Suspended)

Module 4: What is the Security Rule?

♦ Defining Security♦ Confidentiality, Integrity and Availability (CIA)♦ Definition and Terminology♦ Approach and philosophy♦ Security Rule Selection Criteria♦ Administrative Safeguards♦ Physical Safeguards♦ Technical Safeguards♦ Group Health Plans♦ Policies, Procedures and Documentation Requirements♦ Some Non-Technical Explanations of Technical Solutions

Day Two

6

Frequently Asked Questions (FAQs)

1. What is the prerequisite for CHP course?There is no prerequisite for this course. CHP is level 1 of HIPAA Certification. No other educational qualifications required.

2. Who is the target audience for CHP certification?1. All key members of a healthcare provider HIPAA compliance team2. Compliance team for HIPAA Privacy and Security.3. IT Professionals servicing Healthcare Industry.4. Healthcare executives5. Healthcare service bureau executives6. Chief Information Officers of covered entities7. Lawyers involved in healthcare8. HIPAA Privacy, Security and Compliance officers9. Pharmaceutical company executives and HIPAA compliance staff10. Insurance executives11. Clinical physicians and office managers12. Healthcare quality assurance and risk managers13. Clinical trial organization executives14. Business Associates to covered entities

3. How can I study for my CHP certification? You can prepare for your CHP certification in three different ways:1. Instructor-led Training Cost $1650*2. Online Course & Exam $11953. Self-study through CHP certification study kit $695 *This cost does not include exam fees.

4. My busy schedule does not allow me to attend instructor-led training for CHP. How can I prepare for the CHP exam?You can purchase the self-study CHP certification kit from the HIPAA Academy or take online training. To buy the study kit or the online training, please visit our Online Store.

5. What is the cost of CHP exam?$495 per exam

6. Where can I take the CHP exam?The exam is available online. You can take this test from anywhere at any time. To purchase an exam voucher please visit our Online Store.

7

7. What is a CHP exam voucher?The CHP exam is available to you online for up to 6 months. We call this a “voucher”; however you must pre-pay for the exam.

8. What is the exam retake policy for CHP?If the candidate does not pass the CHP certification examination, he or she may register to take the certification examination online for $395. Please call +1.515.460.3481 to register for the re-take. You can register here.

9. How can I register for instructor-led training for CHP?You can register by paying through a credit card online at our Online Store. To pay through check you will need to call +1.515.460.3481 and we will provide you with a registration form and invoice.

10. How can I receive study material for instructor-led training before the class?All material is delivered on the 1st day of class.

11. After passing the exam when will I receive the certification after I pass the certification test?The certificate will be sent to you by the HIPAA Academy. If it is not received within3 weeks of passing the exam, please contact: [email protected].

12. Do I need to renew my CHP certification?The CHP certification is valid for three-years. Recertification costs $495 and you will get an updated copy of the CHP manual and a new certificate. If you do not renew your certification within the three year period you will be required to retake the CHP exam and pay $495.

13. How can the HIPAA Academy help my organization with our HIPAA Security Compliance?HIPAA Academy can help you with the following services:1. Security Risk Analysis 2. Security Policies Template3. HIPAA Remediation and Implementation4. Contingency Planning5. Implementation of Contingency Plan6. HIPAA Audit

14. Do I need Certified HIPAA AdministratorTM (CHATM) certification?If you are planning to pursue CHP certification, you don’t need the CHA™ certification as CHA™ is a subset of CHP.

8

15. How will this certification help me in finding a job?Certification in HIPAA regulations can provide a distinguishing factor for potential employer selection of employees in the healthcare information technology industry.

16. How will this certification enhance my skills? Comprehensive training and certification in the HIPAA regulations provides a solid foundation to quickly identify potential violations of HIPAA regulations and a solid knowledge of how to correct problems.

17. How will this certification benefit my employer? Employers will realize fewer potential loss incidents from HIPAA violations when employees are more thoroughly trained in the regulations. Patients will have greater confidence in a healthcare providers’ ability to protect their personal information.

910

About ecfirst

ecfirst with rich hands-on experience delivers world-class services in the areas of:● Security regulatory compliance solutions (HIPAA, HITECH Act, PCI DSS, NIST and ISO

27000, State Regulations) ► Risk analysis, technical vulnerability assessment ► Business Impact Analysis & Development of Disaster Recovery Plans● Security, compliance training and certification● On-Demand or Managed Compliance ► HITECH data breach and incident response management ► Deployment and implementation of security technologies (including remediation) ► Policy development (privacy and security) ► Encryption implementation (policy, product selection, implementation)● E-Discovery services● Software license assessment● Professional staffing, including project management, security officer, HL7, HIPAA, ICD 9/10

and more

Regulatory Compliance PracticeThe ecfirst Regulatory Compliance Practice delivers deep expertise with its full suite of services that include; ISO 27000 readiness and training, HIPAA Privacy Gap Analysis, Meaningful Use Risk Analysis, HITECH Data Breach, Technical Vulnerability Assessment, Policy and Procedure Development, Disaster Recovery Planning, On Demand Consulting, as well as our Managed Compliance Services Program (MCSP).

Devoted to our Clients. Delivering with Passion.

Compliance and Training Certificationecfirst, home of the HIPAA Academy, offers the gold standard in compliance training and certification. The HIPAA CHATM, CHP and CSCSTM certifications are the only certifications recognized in the Industry. The ecfirst Certified Security Compliance SpecialistTM (CSCSTM) Program is the first and only information security program that addresses all major compliance regulations from a security perspective.

ecfirst delivers world-class information security and regulatory compliance solutions. With over 2,100+ clients, ecfirst was recognized as an Inc. 500 business – America’s Top 500 Fastest Growing Privately Held Business in 2004 – our first year of eligibility. ecfirst serves a Who's Who client list that includes technology firms, numerous hospitals, state and county governments, and hundreds of businesses across the United States and abroad. A partial list of clients includes Microsoft, Symantec, HP, McKesson, EMC, IBM, Kaiser, Principal Financial, U.S. Army, U.S. Dept. of Homeland Security, U.S. Dept. of Veterans Affairs and many others.

ecfirst Differentiatorsecfirst combines state of the art tools, the highest credentialed staff, and reporting that maximizes value, efficiency, and information for our clients to deliver the industry’s best technical vulnerability assessments. Critical ecfirst differentiators include:● ISO 27000 suite of consulting and training services easily tailored to your requirements● Home of The HIPAA Academy – First in the healthcare and information technology industry

with the CHP and CSCSTM programs● Highly credentialed professional consulting team with expertise in information security, HL7,

HIPAA, HITECH, Meaningful Use● E-Discovery Services● Breach notification and incident response services● Security technology deployment and implementation On Demand or Managed Compliance

services ● On Demand Encryption Services to enable implementation of encryption capabilities in your

environment (product selection, deployment on all portables/media, policy & more)● Deep experience in the healthcare and information technology industries● Compliance based technical vulnerability assessments (external, internal, wireless, firewall

systems/DMZ)● Executive dashboards that may be tailored for senior management to highlight critical findings

Contact ecfirstTalk to ecfirst and you will find an organization that is passionate about the services we deliver and exceptionally devoted to its clients.

We deliver value with intensity and are paranoid about our performance for your organization. For more information, please call +1.515.460.3481 or visit www.ecfirst.com.

11















1


Learning Objectives












2

Target Audience







initiatives.




3

The CHP Exam

Exam Grid






4






HIPAA Privacy 30%

HIPAA Security 30%

Total 100%


Modules: 1 and 2






5

Day One

Modules: 3 and 4






Day Two

6








7









8




910

About ecfirst



and more













11















1


Learning Objectives












2

Target Audience







initiatives.




3

The CHP Exam

Exam Grid






4






HIPAA Privacy 30%

HIPAA Security 30%

Total 100%


Modules: 1 and 2






5

Day One

Modules: 3 and 4






Day Two

6








7









8




910

About ecfirst



and more













11















1


Learning Objectives












2

Target Audience







initiatives.




3

The CHP Exam

Exam Grid






4






HIPAA Privacy 30%

HIPAA Security 30%

Total 100%


Modules: 1 and 2






5

Day One

Modules: 3 and 4






Day Two

6








7









8




910

About ecfirst



and more













11















1


Learning Objectives












2

Target Audience







initiatives.




3

The CHP Exam

Exam Grid






4






HIPAA Privacy 30%

HIPAA Security 30%

Total 100%


Modules: 1 and 2






5

Day One

Modules: 3 and 4






Day Two

6








7









8




910

About ecfirst



and more













11















1


Learning Objectives












2

Target Audience







initiatives.




3

The CHP Exam

Exam Grid






4






HIPAA Privacy 30%

HIPAA Security 30%

Total 100%


Modules: 1 and 2






5

Day One

Modules: 3 and 4






Day Two

6








7









8




910

About ecfirst



and more













11















1


Learning Objectives












2

Target Audience







initiatives.




3

The CHP Exam

Exam Grid






4






HIPAA Privacy 30%

HIPAA Security 30%

Total 100%


Modules: 1 and 2






5

Day One

Modules: 3 and 4






Day Two

6








7









8




910

About ecfirst



and more













11















1


Learning Objectives












2

Target Audience







initiatives.




3

The CHP Exam

Exam Grid






4






HIPAA Privacy 30%

HIPAA Security 30%

Total 100%


Modules: 1 and 2






5

Day One

Modules: 3 and 4






Day Two

6








7









8




910

About ecfirst



and more













11















1


Learning Objectives












2

Target Audience







initiatives.




3

The CHP Exam

Exam Grid






4






HIPAA Privacy 30%

HIPAA Security 30%

Total 100%


Modules: 1 and 2






5

Day One

Modules: 3 and 4






Day Two

6








7









8




910

About ecfirst



and more













11

Delivering Everything Compliance.

Everything Security.

1000s of Clients | Clients in all 50 States | Clients in 5 Continents

Delivering Everything Compliance. Everything Security.

Certified HIPAA Administrator™

Fast track program for end users to learn the basics of HIPAA & HITECH regulations, including the HIPAA Privacy Rule.

Certified HIPAA Professional

Industry’s first & most comprehensive program on HIPAA & HITECH. Covers everything HIPAA, including Transactions, Code Sets, Privacy, Security & Breach Notification.

Training & Certification

Certified Security Compliance

Specialist™

World’s first program focused on compliance regulations & cyber security. Covers ISO 27000, PCI DSS, NIST, FISMA, HIPAA & more.

In-depth review of ISO 27000, 27001 & 27002.

Certified Cyber Security

ArchitectSM

First executive training program designed to enable development of a cyber security program in the class.

Client Testimonials

“Nixon Peabody retained the

services of Ali Pabrai, MSEE, CISSP as an expert in information security. Found Mr. Pabrai & his firm, ecfirst, as exceptionally responsive in supporting all our activities as requested on a timely & professional manner. His insight was valued & of significance.” Linn F. Freedman, Partner Nixon Peabody LLP

"Prime Healthcare & its network of 30+ hospitals is excited to have partnered with an organization – ecfirst – that is recognized in the healthcare industry as a leader devoted to enabling health systems to continually address information privacy & security regulatory requirements." Prime Corp.

“ecfirst has demonstrated dedication

to ensuring that project goals were met or exceeded every step of the way. I strongly recommend ecfirst to anyone in need of similar services." Doug Springmeyer

“Pabrai & his ecfirst Team are top

notch, easy to work with, & helped us to meet our security project & compliance timelines.” Debbie Sarantopoulos-Palese, VP Seasons Healthcare

ecfirst Facts

• Established in 1999

• Clients in all 50 U.S. States

• Global experience includes

Philippines, India, Canada,

Africa

• Industry experience includes

healthcare, IT, finance,

government, & legal

• Privately held

• Unconditional guarantee for

services delivered

Security Risk Assessment Conduct a comprehensive risk assessment to identify compliance gaps & security vulnerabilities. Services also include vulnerability assessment & penetration testing. On-Demand Consulting Immediately add resources, off-site or on-site, to jumpstart compliance & security projects. Flat rate pricing. Managed Compliance. Managed Security. Fixed monthly fee for a one, two, three or five year period to manage compliance & information security projects. Includes security risk assessments, policy/procedure development, training, consulting, remediation, certification & more.

Please contact [email protected] for a tailored proposal addressing your compliance & security priorities.

Contact Us

TM Program Testimonials - HIPAA Academy · Quality Assurance and Risk Managers 8. Insurance Executives 9. Physicians and Office Managers ... Security Policies Template 3. HIPAA Remediation

Documents