Security Awareness Training

Cyber security is in the hands of your staff… literally. Everyone, even long time employees, need to be updated or trained on the latest threats, preventing ransomware, and policies and procedures that protect the patient’s information. Protect everyone with security training based on current best practices and your organization’s policies. Don’t have them? We’ll help you create documented, end-to-end security policies and procedures.

Training can be comprised of one session or multiple shorter sessions, based on the needs of your staff and organization. The QI Express team will come to you, or provide web-based learning opportunities through live webinars and videos.

Areas of Training

Our training approach includes multiple methods. Together, we choose the best fit for your schedule and team. All training can be customized to the specific topics you require. Our goal is to not only provide you training on HIPAA requirements, but to also incorporate your organization’s specific security and privacy safeguards.

Training topics could include:



What is PHI and where is it in our organization? When and how to disclose PHI, and how to give patients access to their PHI.



Phishing, ransomware, and other current threats. Passwords, encryption, and mobile device and remote access security.

Incidents and Complaints

How to file a complaint. What to do if you receive a compliant, and roles and responsibilities in complaint investigation and breach response.

We have enjoyed working with Adam Bullian and the QI Express team. They have provided valuable in-person and webinar training to AMBA members and medical billers we are associated with for some time now with great results. We very much recommend them to provide HIPAA training for associations, billers and medical practices.

Cyndee Weston

Executive Director, American Medical Billing Association

Frequently Asked Questions

How do I know if my organization needs security awareness training?

All organizations that have access to patient information must train their staff. Security awareness training should be conducted at hire and at least once each year. Best practice is also to conduct periodic training several times throughout the year.

What topics do you cover in your training?

The QI Express Security Awareness Training Program is fully customizable and is intended to advise your workforce and staff on your organization’s specific security and privacy policies and procedures. Topics we covered include:

  • Physical Security and Security Basics
  • Roles, Access, and Workstation Security
  • Mobile Computing
  • Data Classification
  • Exchange and Incident Response
  • Company Specific Security Training
Can your training satisfy the on-board training requirement for staff?

In addition to satisfying the annual training requirement for existing staff, our training program can also satisfy the on-boarding training requirement when utilized as part of the on-boarding process. No matter what method of training used, all our training programs are easily customizable. All training courses will be updated annually or as needed to reflect regulatory changes, industry threats, vulnerabilities, and best practices.

Previous Sessions