A practical course on HIPAA Security Rule requirements for IT and security professionals in healthcare, updated to cover the 2026 proposed rule changes.
HIPAA's Security Rule was written for administrators, but it falls on technologists to implement it. This course covers what the Security Rule actually requires, how it maps to real technical controls, and what is changing under the 2025 Notice of Proposed Rulemaking that HHS expects to finalize in 2026.
The proposed rule makes the most significant changes to HIPAA security requirements since 2003. It eliminates the distinction between "addressable" and "required" implementation specifications, adds mandatory multi-factor authentication, sets specific encryption standards, establishes patch management timelines, and requires annual penetration testing with social engineering components. For IT professionals in healthcare or in organizations that serve as business associates, understanding these changes now is not optional.
This course is designed for IT administrators, security engineers, system architects, and MSP technicians who are responsible for implementing and maintaining controls in healthcare environments. It assumes familiarity with general IT concepts and focuses on practical application rather than legal interpretation.
One-time payment. Lifetime access. Access link delivered by email.
Already purchased? Resend access link