SUMMARY

• IT professional with 20 years of healthcare experience, proven leadership, strong interpersonal communication, deep IT Security background, project management experience, and a dedicated focus on customer support.
• Proven track record of managing diverse projects simultaneously; interfacing with Executive Leadership team, Directors, managers and local IT teams to develop and execute implementation project plans.
• 10+ years of enterprise level Information Technology Security experience at Confidential .
• Exceptional expertise in implementation and ability to identify gaps to improve and streamline current processes.
• Certified Security Compliance Specialist (CSCS).
• Certified HIPAA Professional (CHP).
• VP of Communication with Toastmasters for 2013 year.
• Knowledge of multiple workflow work management tools (i.e., Archer GRC SecOps, IBM Resilience, Phantom, Splunk ES, Splunk Adaptive Response
• Knowledge with NIST CyberSecurity Framework

AREAS OF EXPERTISE

• TCP/IP
• VPN
• LAN
• WAN
• Active Directory
• AS400
• SSO/MFA
• Dameware eSAF
• SRA
• Application Security
• Provisioning/De - Provisioning
• Remedy/SNOW
• Desktop Tech Support
• FISO
• MS Project
• Visio
• SharePoint
• Excel
• Network

PROFESSIONAL EXPERIENCE

Confidential

Business Analyst

Responsibilities:

• Lead efforts in developing a program to align with industry standards and regulatory compliance such as ISO 27001/27002 , Cloud Security, SOC2, BITS, NIST, PCI DSS, HIPAA/HITECH,etc.
• Review risks, threats, vulnerabilities and develop remediation plans in partnership with Legal, IT, Operations and other relevant groups.
• Consults on other types of security (e.g., security architecture, secure development lifecycle, physical security issues) as needed.

Confidential

IT Security Business Analyst

Responsibilities:

• Worked with small business owners, reviewing company policies and processes
• Improved data tracking accuracy and workgroup efficiency by automating manual processes.
• Assisted with remediation of internal audit findings; identified application problems, developed constructive solutions, and recommended specific courses of action.
• Generated reports from systems
• Performed validation according to pre-defined roles to identify last log-on, 90 day inactivity, terminations, heightened roles, role-based exceptions.

Confidential

IT Operations Manager

Responsibilities:

• Managed diverse projects simultaneously; interfaced with Executive Leadership team, Director and managers and local IT teams to develop and execute implementation project plans.
• Implemented user security and clinical applications.
• Performed troubleshooting and resolved application/system issues.
• Facility Information Security Officer for 2 years and became the liaison with Zone FISO to review company policies and ISAMS to ensure accuracy and up to date.
• Developed and Implemented ISAM (Information Security Access Management) polices and assisted with educating end users on identity management policies.
• Implemented provision and removal of user access within AS400, Active Directory, & LDAP.
• Supported site to site VPN using IPsec and SSO solution for employees.
• Developed Role Base Templates for over 160 roles, strategically identifying application access required for first day of hire.
• Led and implemented projects to maintain stable and reliable network operations to manage new security threats, disaster recovery, and patch management.
• Oversaw Group Policies, DFS, and Folder Redirections.
• Assisted with multiple teams to develop and deploy security, infrastructure, and user management solutions.
• Assisted along with my Desktop support team with Network team on security, virus protection, and backup operations; to ensure installs and regular maintenance for Cisco firewalls & Cisco routers and ensured compliance with overall company security policy.
• Assisted with pre- and post-Go Live support for eSAF, Kronos, eCW, Artiva, Access Control System (badges).
• Improved data tracking accuracy and workgroup efficiency by automating manual processes.
• Assisted with remediation of internal audit findings; identified application problems, developed constructive solutions, and recommended specific courses of action.
• Generated reports from systems
• Performed validation according to pre-defined roles to identify last log-on, 90 day inactivity, terminations, heightened roles, role-based exceptions.
• Assisted with Director to Identify key requirements necessary to separate IT support between HCAPS IT and Physician Service Center.
• Manage three operational teams, setting expectations and metrics for Customer Support Call Center, Security and Desktop Tech support.
• Interim management over three additional teams of Telecom, Networking and Payer Website administration.
• Assisted by-annually Disaster Recovery mock up stations to ensure all business related applications worked off-site for Customer Support teams.

Confidential

IT&S Security Analyst Team Lead

Responsibilities:

• Played major role as Lead in multiple projects to assist improvement in streamlining business processes.
• Fielded variety of issues and assisted team members with more difficult tasks.
• Held role of the FISO (Facility Information Security Officer) which was a vital role in HCAPS’s adoption of eClinicalWorks.
• Performing user audits, user account creation, and change user roles.
• Played a vital role in the success of deploying eSAF project (Electronic Security Access Form) which gave managers the ability to provision account creation for their employees, which expedited the process of on-boarding a new employee.
• During the eSAF project, it was important to coordinate with executives, project managers, internal clients, and even third party contractors.
• Ensured that Security standards, ISAM's and compliance policies are followed to assist protecting patient data and the integrity of our company.
• Primary Contact for all OnBase reported issues, includes but not limited to Third Party OnBase queue, Workflow Configuration, creation of new OnBase groups, worked closely with OnBase Administrator.
• Deep understanding of ECW and able to assist in a variety of issues that involve our current PPMS standard.
• Managed HCAPS remote access software. This VPN solution is the primary way remote users can access the Confidential network.
• Lead the project to replace Kronos time clocks with Kronos TEM software solution.
• Communicated status with managers and heads of departments.
• Monitored Remedy tickets and assist users with Security related issues.