Oops! Sorry!!


This site doesn't support Internet Explorer. Please use a modern browser like Chrome, Firefox or Edge.

mikedeschaine logo

Featured Project

Asynchronous Linear Self-Paced Training

Cybersecurity Preparedness & Resilience - Endpoint Protection Systems

Overview: This course is part of a 10-module series under the Department of Health and Human Services' (HHS) 405(d) Knowledge on Demand umbrella, designed to introduce core cybersecurity concepts and promote organizational implementation. Each 10-30 minute module provides an essential overview of key topics. HHS's 405(d) Program is a free public program that collaborates with private health organizations to develop consensus-based best practices and methodologies to strengthen the Healthcare and Public Health (HPH) sector's cybersecurity posture against cyber threats.

Client ▼

Joint venture between the Federal Department of Health and Human Services (HHS), the Administration for Strategic Preparedness and Response (ASPR), and the 405(d) Program - collectively known as HHS Cyber.

Target Audience ▼

Top-level owners/executives and middle managers of small healthcare organizations with limited resources. The content within this series is purposely general to meet the needs of the learning audience, and is designed to be general guidance with helpful resource recommendations to direct their staff to for implementation.

Challenge ▼

Small healthcare organizations have a legal requirement to protect patient information and follow cybersecurity protocols, but lack significant monetary and personnel resources to remain compliant. Only approved 405(d) resources can be used for content.

Goal ▼

To develop a freely accessible Cybersecurity Preparedness training program aimed at providing high-level to middle management with an awareness of key concepts and directing them to further resources to keep their practices legally compliant, while also delivering valuable foundational knowledge for a wide range of healthcare professionals who may access it.

Learning Objectives ▼

Due to the need to consider a wide audience and fulfill a legal requirement, the decision was made to make the learning objectives general statements about what we will cover in the module, rather than the traditional approach of telling the learner what they will be able to do by the end of the training.Since this decision was out of my control, for the purpose of this portfolio piece I feel the need to provide properly formatted learning objectives. If I were to re-write these they would look something like this: 

By the end of this training you will be able to:

1. Describe how endpoint protection systems contribute to the security of your healthcare organization.
2. Identify key recommendations related to endpoint protection systems within the 405(d) HICP publication.
3. List common best practices for securing your organization's endpoints.
4. Recommend appropriate mitigation steps your healthcare organization can implement to reduce risks to its endpoints.

Design & Development Process ▼

Needs Analysis: The client already had perameters in mind so there was no need for an in-depth needs analysis but I did spend some time questioning a few industry experts to ensure I had a full understanding of the Healthcare sector.

Content Outline & Storyboarding ▼

I outlined relevant topics and sub-topics from the HICP publication, created a "script wireframe" rather than a visual storyboard, and collaborated with a Cybersecurity SME for continuity.

Development ▼

Once the wireframe was approved, I immediately began development of the course in Articulate Storyline, saving time. As the audio, visual, and interactive elements developed, it underwent reviews at various stages both by our internal team, SME, and the client until final approval.

Interactivity ▼

The decision was made to keep the course as linear as possible with a mid-point knowledge check and an end knowledge check to engage the learner and allow them to earn a printable certificate at the end of the module.

Accessibility Considerations ▼

While in development I had to ensure the course was 508 compliant by using clear navigation, choosing the proper color schemes, and ensuring closed caption accuracy before submitting to our 508 compliance vendor.

Technology & Tools ▼

Articulate Storyline 360 - Used for it's ease of publishing in various formats (LMS, web, video) upon the request of individual healthcare organizations.Wellsaid Labs Premium AI Text-to-Speech (TTS) - We decided that AI voices were the clear choice to save time and cost over hiring a VO Actor. After comparing Articulate's integrated AI features to Wellsaid Labs, our client decided that the Wellsaid Labs voices were much better quality and sounded realistic.Screencast recorded with Microsoft Clipchamp.