My Profile
Dashboard
Contact Preferences
Change Email
Sign Out
Certified in Cybersecurity 
SSCP 
CISSP 
CISSP Concentrations HCISPP – The HealthCare Security Certification
Become an HCISPP – HealthCare Information Security and Privacy Practitioner
Earning the HCISPP healthcare cybersecurity certification is a proven way to build your career and show employers you’re on the forefront of protecting patient health information and navigating a complex regulatory environment.
The HCISPP is the only certification that combines cybersecurity skills with privacy best practices and techniques. It demonstrates you have the knowledge and ability to implement, manage and assess security and privacy controls to protect healthcare organizations using policies and procedures established by the cybersecurity experts at (ISC)².
Prove your skills, advance your career, and gain support from a community of cybersecurity leaders here to help you throughout your professional journey.
Get New Pricing For Online Training
Interested in HCISPP certification for your team? Learn more about (ISC)² Enterprise Solutions.
Did you know? Our certifications are accredited, recognized and endorsed by leading organizations around the world.
Connect with other professionals on the (ISC)² Community. Join the virtual HCISPP Study Group.
The HCISPP will be designated inactive effective December 1, 2026. Learn more:
https://www.isc2.org/notice/HCISPP-Sunset.
Your Pathway to Certification
- 1 Ensure the HCISPP is Right for You
- 2 Register and Prepare for the Exam
- 3 Get Certified
- 4 Become an (ISC)² Member
Who Earns the HCISPP?
The HCISPP is ideal for information security professionals charged with guarding protected health information (PHI), including those in the following positions:
- Compliance Officer
- Information Security Manager
- Privacy Officer
- Compliance Auditor
- Risk Analyst
- Medical Records Supervisor
- Information Technology Manager
- Privacy and Security Consultant
- Health Information Manager
- Practice Manager
Work in government? See how the HCISPP meets the U.S. Department of Defense (DoD) Directive 8570.1.
Is the HCISPP Right for You?
The HCISPP isn’t the best security IT certification option for everyone. Before you start down your certification path, make sure you aren’t missing an opportunity to pursue a credential more aligned with your immediate career goals.
Our broad portfolio of accredited security certifications, include:
Entry-level Certification
Cybersecurity Strategy and Implementation
IT/ICT Security Administration
Cloud Security
Secure Software
Development
Security Assessment and Authorization
What will You Need to Know to Pass the HCISPP Exam?
The HCISPP exam evaluates your expertise across seven domains. Think of the domains as topics you need to master based on your professional experience and education.
HCISPP Domains
- Domain 1. Healthcare Industry
- Domain 2. Information Governance in Healthcare
- Domain 3. Information Technologies in Healthcare
- Domain 4. Regulatory and Standards Environment
- Domain 5. Privacy and Security in Healthcare
- Domain 6. Risk Management and Risk Assessment
- Domain 7. Third-Party Risk Management
Download the HCISPP Exam Outline.
Register for Your HCISPP Exam
Don’t wait. If you’re ready to pursue the HCISPP certification, commit yourself now by registering for the exam.
Schedule your exam by creating an account with Pearson VUE, the leading provider of global, computer-based testing for certification and licensure exams. You can find details on testing locations, policies, accommodations and more on their website.
Get HCISPP Training that's Right for You
With instructor-led online and classroom courses, (ISC)² has a training option to fit your schedule and learning style. Trainings, seminars, courseware and self-study aids directly from (ISC)² or one of our many Official Training Providers help you get ready for the rigorous HCISPP exam by reviewing relevant domains and topics. Visit the (ISC)² Training Finder to register for the course that best meets your needs, including:
(ISC)² Self-Study Tools Keep Your Skills Sharp
Studying on your own or looking for a supplement to your seminar courseware? Check out our official self-study tools:
- Official textbooks: What you need to know to be successful and review relevant domains.
- Official study guides: Strengthen your knowledge in a specific domain and get in more exam practice time.
- Official study flash cards: Prepare for the HCISPP exam anytime, anywhere.
Gain the Necessary Work Experience
To qualify for this cybersecurity certification, you must pass the exam and have at least two years of cumulative, paid work experience in one or more of the seven domains of the (ISC)² HCISPP Common Body of Knowledge (CBK).
Learn more about HCISPP Experience Requirements and how legal experience may be substituted for compliance, and information management experience may be substituted for privacy.
Don’t have enough experience yet? You can still pass the HCISPP exam and become an Associate of (ISC)² while you earn the required work experience.
Complete the Certification Application Process
Once you receive notification informing you that you have successfully passed the exam, you can start the online certification application process. This process attests that your assertions regarding professional experience are true, that you are in good standing within the cybersecurity industry. It also contains the agreements to abide by the (ISC)² Code of Ethics and privacy policy.
Agree to the (ISC)² Code of Ethics
All information security professionals who are certified by (ISC)² recognize that such certification is a privilege that must be both earned and maintained. All (ISC)² members are required to commit to fully support (ISC)² Code of Ethics Canons:
- Protect society, the common good, necessary public trust and confidence, and the infrastructure.
- Act honorably, honestly, justly, responsibly, and legally.
- Provide diligent and competent service to principles.
- Advance and protect the profession.
Pay Your First Annual Maintenance Fee
Annual Maintenance Fees (AMFs) are used by (ISC)² to support the costs of maintaining the (ISC)² certifications and related support systems.
Certified Members AMFs
(ISC)² certified members pay a single AMF of U.S. $125 which is due each year upon the anniversary of their certification date. Members only pay a single AMF of U.S. $125 regardless of how many certifications they earn. AMFs for members with multiple certifications are due on their earliest certification anniversary.
Associates of (ISC)² AMFs
Associates of (ISC)² pay an AMF of U.S. $50 which is due each year upon the anniversary of achieving their associate status.
Join A Global Community Of Cybersecurity Leaders
Once you are certified and become an (ISC)² member, you’re a part of a global community of certified cybersecurity professionals focused on inspiring a safe and secure cyber world. In addition to that extensive network, a wealth of continuing education opportunities help you keep your skills sharp, informed of the latest trends and best practices, and ensures your expertise remains relevant throughout your career. Learn more about (ISC)² member benefits.
The HCISPP is ideal for information security professionals charged with guarding protected health information (PHI), including those in the following positions:
- Compliance Officer
- Information Security Manager
- Privacy Officer
- Compliance Auditor
- Risk Analyst
- Medical Records Supervisor
- Information Technology Manager
- Privacy and Security Consultant
- Health Information Manager
- Practice Manager
Work in government? See how the HCISPP meets the U.S. Department of Defense (DoD) Directive 8570.1.
Is the HCISPP Right for You?
The HCISPP isn’t the best security IT certification option for everyone. Before you start down your certification path, make sure you aren’t missing an opportunity to pursue a credential more aligned with your immediate career goals.
Our broad portfolio of accredited security certifications, include:
Entry-level Certification
Cybersecurity Strategy and Implementation
IT/ICT Security Administration
Cloud Security
Secure Software
Development
Security Assessment and Authorization
The HCISPP exam evaluates your expertise across seven domains. Think of the domains as topics you need to master based on your professional experience and education.
HCISPP Domains
- Domain 1. Healthcare Industry
- Domain 2. Information Governance in Healthcare
- Domain 3. Information Technologies in Healthcare
- Domain 4. Regulatory and Standards Environment
- Domain 5. Privacy and Security in Healthcare
- Domain 6. Risk Management and Risk Assessment
- Domain 7. Third-Party Risk Management
Download the HCISPP Exam Outline.
Register for Your HCISPP Exam
Don’t wait. If you’re ready to pursue the HCISPP certification, commit yourself now by registering for the exam.
Schedule your exam by creating an account with Pearson VUE, the leading provider of global, computer-based testing for certification and licensure exams. You can find details on testing locations, policies, accommodations and more on their website.
Get HCISPP Training that's Right for You
With instructor-led online and classroom courses, (ISC)² has a training option to fit your schedule and learning style. Trainings, seminars, courseware and self-study aids directly from (ISC)² or one of our many Official Training Providers help you get ready for the rigorous HCISPP exam by reviewing relevant domains and topics. Visit the (ISC)² Training Finder to register for the course that best meets your needs, including:
(ISC)² Self-Study Tools Keep Your Skills Sharp
Studying on your own or looking for a supplement to your seminar courseware? Check out our official self-study tools:
- Official textbooks: What you need to know to be successful and review relevant domains.
- Official study guides: Strengthen your knowledge in a specific domain and get in more exam practice time.
- Official study flash cards: Prepare for the HCISPP exam anytime, anywhere.
To qualify for this cybersecurity certification, you must pass the exam and have at least two years of cumulative, paid work experience in one or more of the seven domains of the (ISC)² HCISPP Common Body of Knowledge (CBK).
Learn more about HCISPP Experience Requirements and how legal experience may be substituted for compliance, and information management experience may be substituted for privacy.
Don’t have enough experience yet? You can still pass the HCISPP exam and become an Associate of (ISC)² while you earn the required work experience.
Complete the Certification Application Process
Once you receive notification informing you that you have successfully passed the exam, you can start the online certification application process. This process attests that your assertions regarding professional experience are true, that you are in good standing within the cybersecurity industry. It also contains the agreements to abide by the (ISC)² Code of Ethics and privacy policy.
Agree to the (ISC)² Code of Ethics
All information security professionals who are certified by (ISC)² recognize that such certification is a privilege that must be both earned and maintained. All (ISC)² members are required to commit to fully support (ISC)² Code of Ethics Canons:
- Protect society, the common good, necessary public trust and confidence, and the infrastructure.
- Act honorably, honestly, justly, responsibly, and legally.
- Provide diligent and competent service to principles.
- Advance and protect the profession.
Pay Your First Annual Maintenance Fee
Annual Maintenance Fees (AMFs) are used by (ISC)² to support the costs of maintaining the (ISC)² certifications and related support systems.
Certified Members AMFs
(ISC)² certified members pay a single AMF of U.S. $125 which is due each year upon the anniversary of their certification date. Members only pay a single AMF of U.S. $125 regardless of how many certifications they earn. AMFs for members with multiple certifications are due on their earliest certification anniversary.
Associates of (ISC)² AMFs
Associates of (ISC)² pay an AMF of U.S. $50 which is due each year upon the anniversary of achieving their associate status.
Once you are certified and become an (ISC)² member, you’re a part of a global community of certified cybersecurity professionals focused on inspiring a safe and secure cyber world. In addition to that extensive network, a wealth of continuing education opportunities help you keep your skills sharp, informed of the latest trends and best practices, and ensures your expertise remains relevant throughout your career. Learn more about (ISC)² member benefits.