Compliance Analyst Risk Management

Tola Solomon

Compliance Analyst

****************@*****.*** Mobile: 475-***-**** Houston, Texas

PROFILE

Passionate, results oriented, compliance analyst with several years of experience and skill conducting risk assessments, building vendor relationships, implementing security policies, procedures and controls to safeguard prescription networks for the hospitals, clinics, pharmacies against cyber threats and potential vulnerabilities. Experience and knowledge in confidentiality, integrity and availability of systems in regards to client management portals, electronic management systems and management facilities.

TECHNICAL SKILLS

Windows 10, 11, Microsoft Office Suite (Word, Excel, PowerPoint, Visio, Project, Outlook) Microsoft Teams Slack Zoom, Webex Google Meet Trello Yammer Smartsheet Qualys DocuSign Splunk CrowdStrike Zscaler McAfee AWS AZURE Cloud Google Cloud Power BI Dropbox FreshBooks Xero QuickBooks Nessus Wireshark Nmap Jira Eramba GRC PeopleSoft Salesforce

REGULATORY FRAMEWORKS

HIPAA TPRM RMF ISO27001

EXPERIENCE

CVS Health

Compliance Anlayst

Third Party Vendor Risk Analyst -Remote

Aug 2022 - Present

●Conduct 25 comprehensive risk assessments per quarter across CVS Health's digital infrastructure reducing the identified vulnerabilities by 15% and recommend appropriate mitigation strategies.

●Establish and maintained strong relationships with vendors, ensuring compliance with CVS Health’s cybersecurity policies and risk management frameworks.

●Led the development and implementation of cybersecurity policies, ensuring adherence to industry standards and regulatory requirements.

●Utilize Zscaler to enforce secure access to the CVS Health portal, integrating multi-factor authentication (MFA) with Symantec VIP for enhanced security.

● Continuously monitored system access and data handling practices, ensuring full compliance with stringent security protocols and industry regulations.

●Manage and assessed over 50 cases, focusing on identifying and mitigating risks associated with prior authorization requests using the MHK system.

●Ensure data protection by implementing strict access controls and conducting regular audits to prevent unauthorized access to sensitive information.

●Develop and executed advanced risk mitigation strategies by analyzing rejection codes in RXclaims and resolving issues related to Prior Authorization, Quality Limits, and Step Therapy within 2 business days.

●Collaborated with clinical and IT teams to ensure that risk management practices were integrated into daily operations, enhancing overall cybersecurity posture.

●Ensure adherence to HIPAA and other relevant regulations by implementing robust compliance checks and regularly updating cybersecurity policies.

●Conduct security audits of third-party vendors, ensuring they met CVS Health’s rigorous cybersecurity and risk management standards.

CMDS.Inc

HIPAA Technical Specialist -Fulton, Maryland

October 2020 - July 2022

●Conducted risk assessment to identify potential business risks, operational and regulatory processes, deficiencies for improvement opportunities.

●Collaborated with 5 cross functional teams such as Administration, Human Resources (HR), Finance/Billing, Patient Admissions/Registration, Information Technology (IT) and Supply Chain Management/Materials Management to integrate and ensure security of applications and systems, contributing to an increase in satisfaction and achievement of business security objectives and achieved over 90% compliance.

●Reviewed and evaluated existing security policies and security controls and ensure compliance with targeted security and privacy frameworks.

●Negotiated and finalized contract agreements for over 30 vendors annually ensuring inclusion of stringent security clauses and compliance standards.

●Monitored and enforced compliance with HIPAA regulations across all departments, conducting regular audits and risk assessments to identify and mitigate potential violations.

●Developed and delivered comprehensive training programs for staff on HIPAA privacy and security rules, ensuring all employees were informed about their responsibilities regarding protected health information (PHI).

●Investigated and responded to potential HIPAA breaches, ensuring timely reporting and corrective action while maintaining accurate documentation for audit and compliance purposes.

EDUCATION

Master Degree in Science: Healthcare Administration, University of New Haven

West Haven, Connecticut.

Bachelor’s in science: Food Science and Technology, Wesley University, Ondo.

CERTIFICATIONS

CompTIA Security+, Cybersecurity

Contact this candidate