John T. Becker

** * **** ******

Lafayette, IN **904

Phone: 765-***-****

E-Mail: ac0gxo@r.postjobfree.com

IT experience concentrating on compliance, transaction processing, disparate system integration and project management in health care, finance, telecommunications and manufacturing. Experienced in System Development Life Cycle (SDLC) environments, business process re-engineering, marketing, sales, and access auditing. Specializing in HIPAA privacy and security compliance since 2000.

Skills

HIPAA Process Re-engineering

Project Management SDLC Methodology Implementation

Structured Analysis

Recent Experience

April 2017 – Present. J Becker Associates. Independent HIPAA Supplier Rusk Management consultant. Making proprietary risk management tools, tailored to the healthcare environment, to meet HIPAA/ARRA/Omnibus Bill mandates available to HIPAA consulting individuals and organizations.

2013 – 2017 – Blue Cross and Blue Shield of Michigan. Employed by OpTech as a Vendor Risk Consultant to evaluate the security status of vendors with whom BCBSM share PHI and PII information. Redesigned the Vendor Self-Assessment (VSA) tool that had been used to support vendor risk management efforts. Conducted vendor site visit assessments and achieved 80+ assessments against a planned metric of 60 assessments. Developed standardized risk definitions and mediation requirements. Standardized the assessment reports. During the four years at BCBSM, the vendor risk program has been recognized for 3 consecutive years at CSO50.

2010 – 2012 –Retired and Supertest. Retired from Carle and helped a friend with his retail business in Lafayette.

2006 – 2010 - Carle Clinic Association, HIPAA Security Official. Developed policies and procedures to achieve compliance in the areas of HIPAA Security, FDA Part 11 Requirements, FTC Red Flag Rules and the HITECH Act of 2009. Major accomplishment was incorporating business management into the security process especially in the area of access authorization. Developed and implemented processes for auditing access to patient PHI. Trailed staff in HIPAA security and audit processes.

PREVIOUS ENGAGEMENTS:

2005 – 2006 - Federal Employee Program Operations Center (FEPOC), Washington, DC. Contracted to perform a HIPAA Security Risk Assessment in six months and prepare a detailed mediation plan to conform to HIPAA Security mandates encompassing policies and Procedures necessary for compliance.

2005 – 2006 - Albertsons (Owners of Abertsons, Osco and other pharmacies -2600 total). Contracted for 6 months to perform a HIPAA Security Risk Assessment and produce a complete a plan to assure compliance with the HIPAA Security Rule. Developed appropriate compliant policies and procedures.

2004 – 2004 - Maryland Department of Hospitals and Mental Hygiene – Health Information Management System. Engaged to validate security aspects of HIPAA including Risk Analysis, GAP Analysis, Remediation Plan and Remediation costing. Management of project. Mapped HIPAA security requirements against NIST security standards in a best practices manual..

2002 – 2003 Naval Medical Center San Diego – HIPAA Compliance Specialist

Responsible for addressing policy, procedural and technical needs of all departments including Medical Records, Branch Clinics, Clinical Divisions, Mental Health, Alcohol and Drug Rehabilitation Programs, and support services. Specialist for Privacy/Security requirements for HIPAA compliance efforts.

Specific Activities Include:

Survey of all directorates/divisions/departments to establish GAPS for Privacy and Security needs

Documentation of PHI information flows throughout facility

HIPAA Security training for main facility, BMCs (Branch Medical Clinics) TOCs (Tricare Outpatient Clinics)

Development of process for local sops (Standard format)

Design and deployment of Disclosure Recording system for accounting

2001 – 2002 – INDEPENDENT CONSULTANT (J. Becker Associates)

Worked with New Jersey based consulting firm defining their offerings in the HIPAA arena. Consulted with two provider clients (hospitals) on privacy and security issues and compliance planning. Developed template for transaction/Code Set/Identifier-Privacy-Security GAP analysis and remediation planning for HIPAA compliance.

1999-2001 COVANSYS – DIRECTOR, EAST REGION

oProject Management Officer and Engagement Director for Lucent Microelectronics. Managed team of 10 project managers, own projects and 20 technical staff.

oProject Management Officer for Capital Blue Cross, Harrisburg, PA. Managed HIPAA code set-transaction-identifier (TCI), Security, and Privacy assessment.

oResponsible for HIPAA TCI, Privacy, and Security remediation GAP analysis assessments and remediation planning.

oTechnical Leader for health care industry (HIPAA) TCI, Privacy, Security

oActing Branch Executive. Increased branch revenues by 40% and net profit margins by 200%.

PROFESSIONAL ACCOMPLISHMENTS, MEMBERSHIPS, PUBLICATIONS AND ASSOCIATIONS:

oBA, University of Iowa

oCHP (Certified HIPAA Professional – ecfirst, HIPAA Academy)

oMember, Institute of Management Consultants

oPanel Member, American Arbitration Association

oBoard of Advisors Member, Indiana Center for Database Systems

oPublished in Data Communications magazine

“Open Networks Free Users from their Mainframe Constraints”

“Network Designers Face Shifting Industry Givens”

oAuthor “Data Communications – Survey & Procedures”

oGuest Lecturer on data communications and information integration environments at Purdue University, Indiana University/Purdue University of Indianapolis, State University of New York, Utica

Contact this candidate