Cybersecurity Leadership for 36 hospitals, clinics, long-term care and health at home in North Dakota, Minnesota, Kentucky, California, Nevada, Arizona and Corporate OfficesPerform hospital information security, HIPAA Security, PCI-DSS and Joint Commission assessments to balance end-user needs with Cybersecurity policies and standardsBuilt strong relationships with and advise Hospital Leadership, Information Technology Leadership, Corporate Responsibility Office (CRO), HIPAA Privacy Official and business on enterprise security risks, strategies, architecture and emerging technology risks and threats.Direct development, implementation, use and process improvements of the Enterprise Governance, Risk and Compliance program and technologySecurity governance and technology leadership over Splunk, Palo Alto, Symantec, Proofpoint, Qualys and Nexpose security toolsBuilt strong cross functional relationships with Cybersecurity teams to understand individuals’ strengths, limitations and goals to provide responsive servant leadership through support, solutions, resources and open availabilitySupervise internal and Third-Party Information Technology to effectively reduce risk while minimizing system security issues and vulnerabilities through software patch strategies and encryption implementationInvestigate security incidents to pinpoint root cause, provide details to leadership team on the situation and resolution, and put mitigating strategies in place to prevent future incidentsImplemented new Identity & Access management processes, standards and proceduresCollaborate with governmental agencies, legal services group, hospital and CommonSpirit management on compliance reviews, investigations, identification of risks and implementation of security controls

Responsible for the information security and HIPAA Security Official roles for CHI Region 4 that includes North and South Dakota, Minnesota and Wisconsin.