Yyyyyy x. yyyyyy

0000 xxxxxx xxxx , xxxx , xxxxx 00000 xxx-xxx-xxxx ● abc@xyz.com

Project & Program Management ~ Information Security ~ HIPAA Compliance

EHR / EMR Systems ~ Risk Management ~ Team Leadership ~ SDLC Oversight

         Certified Project Director offering 15+ years experience in information systems specific to the healthcare industry; excel at collaborating with physicians and hospitals to expedite and ensure project success.

         SME (subject matter expert) in HIPAA, ARRA, HITECH Act, Meaningful Use, CHIP (Childs Health Insurance Program), and ICD-10 (US, EC & Asia).

         Extremely well-versed in cutting-edge EHR/EMR technologies, information security standards and frameworks (e.g. ISO2700x, COBIT, NIST), cyber security, and HIPAA privacy and security laws.

         Sound understanding of workflow processes in healthcare environments and able to quickly identify areas for improvement.

         Exceptional talents in creating business continuity and disaster recovery (DR) plans and programs, performing in-depth gap analysis and audits, and creating IT and regulatory policies and procedures

         Advanced skills in ensuring rigorous compliance with FDA, CMMI, Joint Commission, PCI-DSS, and SOX rules and regulations.

         Considerable expertise in SDLC methodologies such as Agile/Scrum and Waterfall, and possess outstanding knowledge of PMI standards, PMBOK framework, and FMEA approach.

         Constantly focus on optimizing software performance, reliability, usability, security, and compliance.

         Detail-focused and highly organized; able to steer cooperative efforts and communication among multiple departments and healthcare entities to achieve optimum clinical workflow.

State University of New York Downstate Medical Center, Brooklyn, NY, 2015 Present

Chief Information Security Officer

         Spearhead full-scope compliance strategy spanning four legal entities including standardizing information security policies and procedures.

         Create risk assessment program and implement specific practices and controls to address risk areas.

         Steer development and delivery of training & awareness program to educate employees, consultants, and other authorized users in critical information security and privacy matters.

         Methodically conduct audits related to risk areas such as Medicare, Medicaid, and private payer billing.

         Collaborate with all internal departments and legal counsel to investigate and swiftly resolve alleged violations of laws, regulations, and policies/procedures.

         Execute Compliance Department-initiated investigations, and present practical recommendations to management.

HealthCare Informatica Corporation, Cary, NC, 1998 2015

Highlights of key clients, projects/contracts, and roles:

Program Manager, Cleardata (Phoenix, AZ); MedCPU (NY & Tel Aviv, Israel), 2015

         As HIPAA privacy and security SME, headed all aspects of program response to HIPAA privacy and security assessment for Merck partner.

         Developed policies and procedures in precise alignment with HIPAA criteria, orchestrated HIPAA training program, resourcefully implemented repeatable risk assessment program, and controlled remediation program in the States and Israel.

Continued ►

Page 2 of 2

Program Manager, CNA Insurance, Chicago, IL, 2014 2015

         As HIPAA privacy and security SME, championed company s first enterprise-wide HIPAA risk audit.

         Formulated enterprise-wide data storage for entire program, managed strategic vendor relationships, and authored policies and procedures addressing access, use, and disclosure of protected health information.

ICD-10 Program Director, Hartford HealthCare, Hartford, CT, 2013 2014

         Conducted detailed organizational ICD-10 assessment, created governance templates, and prepared project scope featuring comprehensive remediation of nine facilities and 3,000+ physicians

Senior Project Manager, Maine Medical Center, Portland, ME, 2012 2013

         Validated Ernst & Young ICD-10 audit, and shepherded ICD-10 remediation project with full accountability for budget, test strategy, disaster recovery program, and metrics reporting.

Senior Project Manager, Roswell Park Cancer Institute, Buffalo, NY, 2012

         Systematically evaluated multiple functional areas (e.g. IT, HIM, clinical care, payers, and finance) to accurately determine ICD-10 impact and produce appropriate remediation project plans.

Senior Project Manager, Community Health Systems, Nashville, TN & Foley AL & Galesburg, IL, 2011 2012

         Joined forces with systems analysts, programmers, vendors, and support staff to seamlessly implement Meaningful Use EHR solution comprising six EMR systems at multiple facilities.

Program Manager, KCI, San Antonio, TX & Charlotte, NC, Billings, MT & Budapest, Hungary, 2010 2011

         Devised project plans, budget, and schedule for HIPAA 5010/ICD-10 EDI system implementation.

Senior Healthcare Consultant / Project Manager, Electronic Health Resources, LLC (client: CGI), 2009 2010

         Leveraged comprehensive analytical skills and project management expertise toward the complete spectrum of CGI s RFP responses for Massachusetts State Medicaid HIT s RFQ.

         Proficiently navigated Medicaid Meaningful Use EHR incentive program and system certification.

Senior Project Manager, District of Columbia Government (Office of CTO), 2008 2009

         Masterminded organizational HIPAA 4010 - 5010 transition strategy spanning more than 140 agencies and including all associated policies and procedures, DR programs, and team alignment and mobilization.

IT Project Manager, Country of Mongolia Ministries of Finance & Health, 2006 2008

         Designed, developed, and deployed national web portal for healthcare sector and PMO for all IT initiatives encompassing 37 governmental offices in Mongolia.

         Helmed DR program, steered implementation of hardware and software changes nationwide, and implemented ICD-10 reporting program including full lifecycle development of custom software.

PhD, Mongolian University of Science and Technology

Bachelor of Science, Harvard University

Project Management Certificate, Boston University

Certified Project Director, International Project Management Association

Microsoft Project, Clarity, Primavera, Microsoft Office, SharePoint, Cerner, Epic, Allscripts, NASCO, Facets

Project Management Institute (PMI) Institute of Electrical and Electronic Engineers