Product and service reviews are conducted independently by our editorial team, but we sometimes make money when you click on links. Learn more.

HCISPP: HealthCare Information Security And Privacy Practitioner

5 Best Healthcare IT Certifications 2018
By , Mary Kyle

The (ISC)² HCISPP is geared toward medical records supervisors, compliance officers, information technology/security managers, risk analysts and others who work in hospitals, health centers, consulting firms and even regulatory agencies. An HCISPP has fundamental knowledge and experience in security and privacy controls that protect personal health information.

Candidates must have a minimum of two years of experience in at least one of the six HCISPP Common Body of Knowledge (CBK) domains and pass one exam. Experience must be full time, and the candidate must have been compensated for their time.

The current HCISPP CBK domains are:

  • Healthcare Industry
  • Regulatory Environment
  • Privacy and Security in Healthcare
  • Information Governance and Risk Management
  • Information Risk Assessment
  • Third-Party Risk Management

Recent graduates or folks just entering the healthcare industry might be interested in the Associate of (ISC)² for HCISPP, which requires the same exam as the HCISPP but not the work experience.

Renewal is required every three years. To maintain the credential, certification holders must earn 60 or more continuing professional education credits (CPEs) during the three-year renewal cycle, 20 of which must be earned annually. Certification holders must also abide by the (ISC)² code of ethics and pay an annual maintenance fee of $65 ($195 total for three years).

HCISPP Facts & Figures

Certification Name
HealthCare Information Security and Privacy Practitioner (HCISPP)
Prerequisite & Required CoursesTwo years full time, paid experience in one of the six HCISPP CBK domains (must include privacy, compliance, and security). Note: One year of experience must be in the health care industry.

Formal training recommended. Available in a three- and four-day classroom or live online formats. Cost is between $1,495 (live online) and $2,995, depending on vendor. Candidates agree to abide by the (ISC)² Code of Ethics.
Number of ExamsOne exam (three hours, 125 multiple-choice questions, 700 out of 1,000 points required to pass)
Cost per Exam$349. Exams administered by Pearson VUE. Prices may vary by geography.
Self-Study Materials(ISC)² provides a free exam outline, free interactive flashcards and the Official (ISC)² Guide to the HCISPP (available in hardcover, iTunes and Kindle), as well as official training.