CISO performing regulatory security gap analysis, risk assessments, policy and procedure reviews, social engineering, security awareness coaching, and training for healthcare organizations.

Volunteer as a consultant to the board of directors.Development and maintenance of website and e-commerce solution.Non-Profit organization for childhood Brain Cancer.

Hands on IT Manager, managing IT staff, projects, and day to day operations, while mentoring and assisting customer’s designated HIPAA Privacy and Security Officer with assessments, policies, procedures, investigations, and remediation’s. Additionally, performing HIPAA Privacy and Security risk analysis, and developing action plans and remediation for customer’s.

CISO and main point of contact for all issues across the enterprise related to information security. This role reports directly to the Health IT Vice-President with indirect reporting to the Chief Information Officer, Chief Compliance Officer and Chief Privacy Officer.Managed twenty-one direct and indirect reports overseeing HIPAA Security, Web Development, Mobile IT solutions, Collaboration Portals, Intranet, Epic Security, Epic Provider Master, Epic MyChart, Epic Haiku/Canto, Radiology PACS, RL Solutions Incident Reporting and several other non-EMR Applications.Chaired the Corporate Data Governance Committee. An active voting member of the Corporate Security Governance Committee, Health IT Security Committee, and Patient Portal Committee.*Plan, coordinate and implement information security policies and procedures to ensure alignment with business practices, industry best practices and compliance with government and regulatory laws and regulations.*Ensure that the Administrative, Physical (IT only) and Technical safeguards of the organization are properly addressed.*Perform ongoing information risk assessments and audits to ensure that information systems are adequately protected and meet HIPAA certification requirements. *Work closely with the Chief Privacy Officer, Chief Compliance Officer, Internal Audit Department, Risk Management Department, Human Resources and local/federal authorities on privacy and security investigations. *Work closely with operational units to identify and implement mitigating controls to current and future information security risks.*Successfully met Meaningful Use 1 requirements from a security perspective. *Successful evidence submitted to CMS Auditors for MU1 pre-payment desk audit, as evident by receipt of payments.*Successfully passed external annual IT Audit of Financial Systems with no deficiencies the past 3-consecutive years.*Effectiveness of this role is evident with no reported Security exposures or breaches.

Hired to support all Information Systems needs for Barnes & Reinecke Engineering in Arlington Heights, IL. The Information Systems staff was terminated. I was brought in to standardize and support the network, applications, backup and recovery, procurement, break and fix, etc. for a defense contractor consisting of approximately 50 employees.

Trained U.S. Transportation Security Administration (TSA) airport employees on federal Security Sensitive Information (SSI) equipment, processes and procedures developed to protect the flying public. (Briefness, due to the sensitive nature of this material)• Conducted 44 hours of training per week for multiple U.S airports.• Weekly class size consists of approximately 25 newly hired federal employees.• High rate of student certification achieved weekly.• 100% travel was required.

Ensured proper security and controls were in place to protect company assets from loss or misuse and to minimize the risk of monetary and productivity loss and embarrassment.• Spearheaded virus response team to resolve viruses attacking email system used by 5,000+ employees without system downtime during business hours.• Managed security team through SAP implementation, resulting in a clean/exception free audit.• Oversaw a virus task force to evaluate and implement Anti-Virus configuration changes on the messaging, desktop and server environments, resulting in a virus free network for the last 12 months.• Acted as liaison between Internal Audit and Information Services, resulting in a positive and healthy working relationship between departments, and an expedient closure to exceptions identified during previous audits. • Served as Security and Audit subject matter expert for Information Services, performing self-audits, educating staff and bringing closure to audit exceptions identified during audits.• Developed an Information Security Awareness Program to educate employees on desktop security, document confidentiality, electronic security, voice confidentiality, and physical.

Led team of four centralized security administrator to manage user ids for 5000+ employees across multiple platforms.• Fostered positive team environment and promoted knowledge sharing and cross training between team members resulting in strengthening of individual skill sets.• Promoted high quality customer service and reduced turnaround time for client requests by 48 hours.• Established and implemented procedures for administering users on multiple platforms, driving consistency between team members.• Developed and implemented a termination checklist and process, minimizing network exposures.• Served as primary point person for Information Services and clients throughout organization resulting in a high level of customer service.• Key Contact and security administrator through several major sales reorganizations which resulted in no downtime to sales organization.

Managed three teams, which consisted of four centralized security administrators, five central LAN administrators, and seven procurement and hardware technical support specialists.• Promoted high quality customer service and reduced turnaround time for deployment of new client hardware by 50%.• Simplified process for Employee New Hires, Terminations and Moves, which reduced turnaround time, resulting in improved employee productivity and client satisfaction.• Implemented software to automate deployment of server changes, which eliminated version control issues.

Supported server, backups, PC’s, applications, telephones, dial-in, and videoconferencing for 100+ clients in a sales location.• Planned and managed the upgrade of 100+ laptops and desktops from Windows 3.1 to Windows NT 4.0 over a holiday weekend, without impacting the sales organization.• Performed troubleshooting and repairs to 100+ PC’s, providing high quality service to the sales organization.• Developed and implemented a Microsoft Access database to track and report product marketing budgets and spending on a monthly basis.• Managed one direct report.

Senior Business Analyst – Logistics (1993-1994)Programmer Analyst – Logistics (1993-1993)Associate Programmer – Logistics (1992-1993)Customer Service Administrator (1990-1992)Sr. Finance Analyst (1988–1990)Finance Analyst (1986-1988)Customer Service Rep (1982-1986)