Course

Leverage Healthcare Policy: How Policy Impacts Healthcare

May 12, 2025 - Jun 8, 2025
1.5 CEUs

$745 Enroll

Full course description

 

COURSE DESCRIPTION

In the ever-evolving landscape of healthcare, understanding the intricate web of policies that govern the industry is crucial. This course examines healthcare policy with a focus on security and privacy regulations and the leaders who must address them in healthcare organizations.

In this course, you will explore the foundational elements of healthcare policy, gaining insights into how these regulations are crafted and implemented. The course will provide an overview of key legislation, such as the Health Insurance Portability and Accountability Act (HIPAA), and its impact on healthcare operations.

Through a blend of theoretical knowledge and exercises, you will gain an understanding of how to navigate the regulatory environment. The course will address best practices around data security, patient privacy, and responding to breaches.

By the end of this course, you will understand how healthcare policies shape the operational landscape of healthcare entities, and you will be equipped with the skills to effectively manage security and compliance, safeguard patient data, and ensure patient safety.

 

LEARNING OUTCOMES

OneUnderstand Key Policies: Explore major healthcare regulations and laws and their implications for healthcare entities. Understand future trends in healthcare policy and pending regulations.

TwoIdentify Security and Privacy Challenges/Risks: You will learn how to recognize common security and privacy challenges.

ThreeUnderstand Roles and Duties: You will understand responsibilities and duties of Security and Privacy Officers in healthcare, including advocacy strategies.

FourIdentify strategies and tactics: Learn strategies to ensure compliance with healthcare regulations including development and implementation of security and privacy programs.

FiveUnderstand Incident Response Planning: You will develop an IR team to effectively manage both a security incident and a privacy breach that minimize impact and ensure quick recovery. This will focus on identifying who you need internally and externally and their roles in response.

SixUnderstand Future Trends in Healthcare Policy: You will gain insights into emerging trends and future directions in healthcare policy related to privacy and security.

 

WHO SHOULD ENROLL

This program is designed for experienced U.S. healthcare professionals from a variety of healthcare or healthcare-related settings who want to enhance their careers, including:

  • Clinical professionals,
  • Healthcare administrators,
  • Information Technology professionals, including Cybersecurity,
  • Emergency preparedness professionals,
  • Risk managers, and
  • Other healthcare professionals.

This program is not designed for those looking to enter the healthcare field. Learners should have at least two years of U.S. healthcare-related experience and a college degree, or five years of U.S. healthcare-related experience without a college degree.

 

REGISTRATION PROCESS

Step 1 – Check your eligibility. Submit a Registration Approval Request to confirm eligibility for the program at least two weeks prior to the course start date.

Step 2 – Register and submit payment. After you receive notification via email that you have been approved to register, you must complete and return a Registration Form and payment at least two weeks prior to the course start date.

 

ADDITIONAL INFORMATION

This course is delivered primarily via asynchronous instruction, meaning that learners can work at their own pace. During the fourth week of the course, there will be a live, online session with the course instructor.

Textbook Information

Upon enrollment confirmation, learners will be mailed a complimentary copy of Enterprise Risk Management as a Value Creator textbook by Mr. Bob Chaput.

Digital Badge

Upon successful completion of this four-week microcredential course, you will be awarded a competency-based digital badge demonstrating specific knowledge and skills related to the course topic.

If you are pursuing the badge for the Leadership in Healthcare Cyber Risk Management program, you have two years to complete all six courses from the start date of your first class, though most students typically finish the certificate within 6 to 12 months.


Questions? Send them to your enrollment advisor.

 

 

MEET THE INSTRUCTORS

This course is co-taught by David Finn, Mari Savickis and Steve Snyder.

Instructor photo

David Finn, CISA, CISM, CRISC, CDPSE, has been involved in leading the planning, management and control of enterprise-wide, mission critical information technology and business processes for 40+ years. His unique experience in risk management and control objectives of technology (including audit, security and privacy) allows him a distinctive perspective in the design and implementation of business and clinical applications and the processes that the technology must support. Finn is focused on using technology as an enabler of operating efficiency and deriving business value through the optimization and control of technology. He is known for creatively engaging all types of audiences, conveying messages that even change-resistant users listen to and remember. In 2023, Finn was awarded the Baldrige Foundation Award for Leadership Excellence in Cybersecurity.

During 2014, he worked closely with CHIME management to create and initiate the three Associations for Executives in Healthcare Information for Security, Technology and Applications. In March 2016, Finn was named to the Health Care Industry Cybersecurity Task Force. This HHS task force was a requirement of Cybersecurity Information Sharing Act of 2015 (CISA). In 2017, Finn joined the 405(d) Working Group under the auspices of the Office of the CIO at HHS.

Most recently Finn was the EVP of Governance, Risk, Compliance at First Health Advisory. Prior to that he served as VP at CHIME, responsible for providing programs, services and educational opportunities focused on the professional growth and development of leaders within the healthcare security, technology and data/application focus areas, including their respective corporate foundations. Previously, he served as EVP at CynergisTek, a top-ranked security provider in healthcare; HIT officer, Symantec; vice president and CIO/privacy and information security officer, Texas Children’s Hospital, and Integrated Delivery System; executive vice president, Healthlink (formerly IMG). His board experience, in addition to both CHIME and HIMSS, also includes ISACA Professional Influence and Advocacy Committee member; Healthcare for the Homeless – Houston; and the Patient Care Intervention Center.

Today, Finn owns and operates Cyber Health Integrity, LLC, providing independent consulting services related to Health IT, cybersecurity and digital resilience, and serves as a member of the Strategic Advisory Board of First Health Advisory.

Finn holds the following certifications:

  • Certified Information Systems Auditor (CISA)
  • Certified Information Security Manager (CISM)
  • Certified in Risk and Information Systems Control® (CRISC)
  • Certified Data Privacy Solutions Engineerâ„¢ (CDPSE)

 

 

Instructor photo

As a long-time advocate for leveraging technology smartly, Mari Savickis champions policies that improve the clinical experience for providers and patients alike and promotes innovation and competition.

In her position as vice president of public policy with the College of Healthcare Information Management Executives (CHIME), she serves as the voice in Washington, D.C. for chief information officers (CIOs), chief information security officers (CISOs) and other c-suite executives charged with the purchase and secure deployment of healthcare technology. Savickis oversees all advocacy and interaction with federal agencies, the White House and Congress on behalf of CHIME.

Savickis leads a wide swath of health IT and digital health policy priorities including those touching interoperability, cybersecurity, artificial intelligence, privacy, patient safety, telehealth, connected care and next generation technologies. She has adeptly led several coalitions, and she thrives working with a variety of stakeholders.

Her policy expertise spans numerous federal laws including the 21st Century Cures Act, the Health Insurance Portability and Accountability Act (HIPAA), the Health Information Technology for Economic and Clinical Health (HITECH) Act, the Medicare Access and CHIP Reauthorization Act (MACRA) and the Substance Use Disorder Prevention that Promotes Opioid Recovery and Treatment (SUPPORT) Act. Savickis is also a Medicare subject matter expert. Prior to joining CHIME in 2015, she served as assistant director of federal affairs at the American Medical Association (AMA) for nearly a decade, leading their health IT and HIPAA advocacy. She formerly served in the Centers for Medicare & Medicaid Services (CMS) and the Office of the National Coordinator for Health IT (ONC). Savickis initially entered the federal government after being selected for the highly competitive Presidential Management Fellows (PMF) program.

Savickis earned a bachelor of arts degrees in political science and Spanish at Ohio Wesleyan University and a master’s degree in public administration at University of Delaware.

 

 

Instructor photo

Steve Snyder serves as the assistant general counsel for AI & digital rights at a global company. With over 20 years of legal experience, Snyder brings a rich technical background as an engineer to his practice. He has provided expert advice to healthcare providers and their business associates on privacy issues and cybersecurity breach response.

A recognized thought leader, Snyder has shared his expertise at numerous conferences and has lectured at esteemed institutions such as Duke Law, Wake Forest Law School and The University of Texas at Austin.

Snyder received a bachelor of science degree in civil engineering with an elective concentration in structures from Lehigh University and a master of science degree in structural engineering from Lehigh University. He received his Juris Doctor degree from New York University School of Law. Snyder is a board-certified specialist in privacy and information security in North Carolina, where he was among the first nine professionals to be recognized with this certification. He also holds the prestigious titles of privacy law specialist and fellow of information privacy from the International Association of Privacy Professionals (IAPP).

Snyder holds the following certifications:

  • Certified Information Privacy Technologist (CIPT)
  • Certified Information Privacy Professional/United States (CIPP/US)
  • Artificial Intelligence Governance Professional (AIGP)

 

About the Center for Professional Education

Discounts | FAQs | Registration & Payment | Policies & Procedures

Logo for The University of Texas at Austin's Extended Campus

 

RETURN TO THE TOP OF PAGE