Keynote Speaker · HIPAA

HIPAA Keynote Speaker for Healthcare Conferences and Boards

For healthcare leaders who need to know how AI, chatbots, and modern digital tools change HIPAA exposure — and what their organizations need to do about it.

Sample keynote video
30
Years
200+
Assessments
85
Keynotes
16
Books Published

Why Carl for Your Healthcare Audience

Healthcare organizations are adopting AI faster than their compliance programs can absorb it. Patient-facing chatbots, ambient documentation tools, AI-assisted diagnostics, and back-office automation are reshaping how protected health information moves through every department — and most HIPAA programs were built for a world where data sat in EHRs and emails, not in language models and vendor APIs.

Carl B. Johnson is a regulatory compliance practitioner who has spent 30 years inside the rules that govern healthcare data. As CISO at Cleared Systems, he advises healthcare organizations on HIPAA programs that actually hold up under modern conditions: AI tool deployments, vendor BAAs that account for new processing patterns, and the practical questions boards keep asking but rarely get clear answers to.

His keynote isn't a recitation of the privacy rule. It's a working session built from current engagements — what's actually breaking in healthcare compliance programs today, what auditors and OCR are paying attention to, and how to build programs that move at the speed of clinical innovation without inviting a breach notification.

Available Sessions on HIPAA

Signature Keynote

HIPAA Compliance in the Age of AI

How AI, automation, chatbots, and digital tools create new HIPAA risks — and what practical steps healthcare organizations can take to stay compliant without slowing innovation. This session breaks down where AI tools intersect with PHI, the BAA gaps most organizations don't realize they have, and the real-world failure modes that create breach exposure. Includes case examples from current healthcare engagements and a practical risk-assessment framework attendees can take back to their organizations.

Best forHealthcare conferences, hospital boards, HIM and compliance leadership Duration45–90 minutes
Executive Briefing

What Healthcare Boards Need to Know About AI Compliance

A focused 30-minute briefing for hospital boards and senior leadership. Cuts through the noise on what AI in healthcare actually means for HIPAA exposure, what questions boards should be asking the CIO and Chief Compliance Officer, and what governance patterns are emerging across healthcare organizations that handle this well.

Best forHospital boards, executive leadership teams, governance committees Duration20–30 minutes plus Q&A
Workshop

HIPAA + AI: A Practical Implementation Workshop

Hands-on session for compliance officers, privacy officers, and IT leaders who need to evaluate, deploy, or audit AI tools in a HIPAA-covered environment. Walks through risk-assessment templates, BAA review checklists, and the practical control patterns that make AI deployments defensible in an OCR investigation. Includes worked examples from real healthcare engagements.

Best forHIM, compliance, privacy, and IT leadership Duration3–4 hours

Download the One-Sheet

Get a printable, shareable PDF of this topic — perfect for circulating to your event committee or program chair. Includes the same sessions, audience profile, and FAQs as this page in a 2-page format.

Download HIPAA Keynote Speaker One-Sheet

Who This Is For

Healthcare audiences who need substantive HIPAA content — not the basics, but the working knowledge that actually drives compliance decisions in 2026 and beyond.

  • Hospital and health-system boards
  • Healthcare CISO and CIO summits
  • HIM and health information management conferences
  • Healthcare technology conferences
  • Payer organization leadership
  • Healthcare compliance officer events
  • Medical group practice associations
  • Healthcare AI and innovation conferences

What Audiences Walk Away With

  • A working framework for evaluating AI tools against HIPAA's privacy and security rule requirements
  • Specific BAA gaps to look for in current vendor contracts — and language that closes them
  • The risk patterns OCR is currently flagging in healthcare AI deployments
  • A board-level vocabulary for discussing AI compliance without overwhelming non-technical leadership
  • Practical first steps any healthcare organization can take in the next 30 days
  • An understanding of when AI use crosses from acceptable to high-risk — and how to draw that line organizationally

Questions Healthcare Organizers Ask

Is this content too technical for a board audience?
No. The signature keynote and executive briefing are deliberately calibrated for non-technical leadership. Carl's specialty is translating regulatory complexity into clear decisions board members can actually make. Technical depth is available for IT-and-compliance audiences via the workshop format.
Can the keynote be tailored for a specific kind of healthcare organization?
Yes. Carl builds talks specifically for the audience — a hospital board has different concerns than a healthcare technology summit or a payer compliance conference. The pre-event call covers the organization type, audience seniority, and the specific HIPAA scenarios that matter most to your attendees.
Does Carl speak at HIMSS, AHIMA, or similar conferences?
Carl is available for major healthcare technology and compliance events. Send the conference details, dates, and audience profile through the contact form and his team will respond with availability and a tailored proposal.
What about audiences with mixed compliance maturity?
Most healthcare audiences are mixed — some attendees are deep in HIPAA, others are encountering it indirectly. Carl's sessions are structured to give value at every level: foundational framing for newcomers, current-state insight for experienced practitioners, and practical decision-frameworks for everyone.
Can the workshop be delivered virtually?
Yes. The workshop format works in person and virtually. Virtual delivery uses broadcast-quality audio and lighting from Carl's Northern Virginia studio, with structured breakout exercises adapted for video conferencing.
How current is the content?
The content is rebuilt for every event. Because Carl runs live healthcare compliance engagements every week through Cleared Systems, the examples and case studies in each keynote come from current engagements — not material that's been on the speaker circuit for years.

Bring This Talk to Your Event

Submit your event details and Carl's team will respond within one business day with availability and a tailored proposal.

Book Carl to Speak