Information Security Consultant
Current
Austin Kontore Llc
Copperas Cove, Tx
Since 2015, my role has been Security Officer for a Healthcare Performance Audit firm. During this time, I implemented the hardware, software, logical controls, and documentation for the firm to attain HITRUST certification. During my tenure, the firm received HITRUST Certification (8.2) and maintained certification (currently at 9.3).Roles include:• Review and completion of risk assessments as requested by the firm’s clients. The client base being top medical insurers and providers across the United States. These assessments are often hundreds of questions long, across multiple domains, and require proof of work (evidence).• Development and maintenance of all security and privacy related documentation, compliant with NIST and HITRUST CSF. Policies and Procedures meet or exceed certification standards.• Implementation of all security controls within the environment, including client computer lockdowns, mobile device security, virtual desktop installations, etc.• Review SOC and HITRUST reports from firm’s vendors (ex. data centers, SaaS, telecom) to ensure compliance. Includes review for HITRUST inheritance.• Continued monitoring and reporting of environments for continued HITRUST compliance (annual audits by external audit firm are required).• Maintenance of all evidence (proof of work) required to maintain certification. Evidence includes logs, attestations, screenshots, video demos, ethical hacks, etc.