The Certified HIPAA Security Officer (CHSO) Bootcamp consists of an intense day covering the basics of HIPAA Security, the three basic Safeguards (Administrative, Physical and Technical) and the Standards covered under each, plus a brief overview of the key laws that apply to HIPAA Security. In addition to this review of HIPAA Security, this Bootcamp will also prepare attendees to take the Certified HIPAA Security Officer Examination.
The CHSO Bootcamp is taught by CHSOs who, in addition to having passed the test, are experts and have extensive experience in the areas they will cover. The CHSO Bootcamp is approximately eight hours long and includes a working lunch, a basic manual and the ability to ask questions/review after all presentations have been finalized.
The CHSO certification test consists of approximately 100 questions covering the basics of HIPAA, HIPAA Security Standards and Key laws dealing with HIPAA Security such as the HITECH Act and the Omnibus Rule. The test is timed and candidates have approximately two hours to complete the same.
The CHSO test can only be taken at specified testing centers at specified designated dates. The CHSO test is normally scheduled as part of the EPI Compliance conferences but additional dates and locations may be pre-arranged on a case by case basis.
There are no prerequisites for this level nor are there any other educational qualifications required.
The CHSO test is based on 5 sections. The actual distribution of questions and scores is as follows:
|1||HIPAA General Information||10|
Obtaining the CHSO certification is based on candidates passing every section with a minimum score of 70%.
Exam retake policy
Individuals failing to pass the test may be scheduled for an online re-testing section or they can choose to retest at the next scheduled session.
CHSO certification is valid for a period of three years. CHSO’s must complete at least three EPI courses dealing with legal, cybersecurity and one general course per year.
CHSO: Administrative Safeguards
Security Management, Assigned Security Responsibility, Workforce Security9:00
Information Access Management, Security Awareness and Training, Security Incident Procedures10:00
Contingency Plans, Evaluations, Business Associate Contracts11:00
Sponsored Lunch – Neuromed12:00
HIPAA: Technical Standards
Access Controls, Audit Controls, Integrity, Person/Entity Authentication, Transmission Security, Integrity Controls, Encryption1:00
HIPAA: Physical Standards
Facility Access Controls, Workstation Use, Workstation Security, Device Media Control2:00
HIPAA: Legal Aspects
Real case scenarios, penalties3:00
HIPAA: Legal Aspects
HITECH, Omnibus Rule,Business Associates, Breach Reporting4:00