IT Leader - Cloud, Security, & Portfolio Management
Resume:
John Reza
************@*****.*** • 949-***-****
https://www.linkedin.com/in/johnreza • Aliso Viejo, CA IT Management
Multi-certified and accomplished professional with remarkable success in E2E IT management, including cloud, portfolio management, SDLC, Agile/Scrum, InfoSec, app development, IT operations, and enterprise architecture for top-notch firms.
Outcome-driven and business-savvy technologist with a track record of planning, initiating, and leading large-scale and complex projects/programs from conception to completion while conceptualizing and devising innovative security solutions to safeguard information assets and minimizing threats of misuse. Instrumental in managing budgets, allocating/utilizing technical resources, and mitigating operational risks for timely and cost-effective completion of programs.
• A strategic leader with a track record of building, mentoring, and spearheading high-performing and geographically distributed cross-functional teams, executing business-critical tasks.
• Adept at conveying complex technical information and generating novel solutions to build consensus with key stakeholders, including high-value clients and executive leadership.
• Exceptional relationship-building and communication skills are evidenced by establishing and nurturing strong relationships with employees, teams, management, Board of Directors, stakeholders, and C-suite executives.
Areas of Expertise
• Strategic Planning &
Analysis
• P&L Management
• IT Due Diligence
• Security Risk
Management
• Health Information
Exchange (HIE)
• Project/Program/Portfolio Management
• Business Process Redesign &
Improvement
• PMO Assessment & Development
• HIPAA Security Rule & Compliance
• CapEx & OpEx Budget Management
• Business Development
• Population Health Management
• IT & Management Consulting
• Cloud Migration & Solutions
Selling
• Digital Transformation
Career Experience
Independent Consultant – Contract Work 2020 – Present Accordion, New York, N.Y.
An IT assessment was conducted for a merger involving a purchased entity in Berlin, Germany, and two existing operations in Toronto and Chicago. The evaluation covered the identification of all hardware, software, architecture, vendor agreements, consolidation options, risk portfolio, and a roadmap for management either directly or through a Managed Service Provider.
NMS Consulting, Beverley Hills, CA
I partnered with three midsize organizations to deliver Virtual Chief Information Security Officer (VCISO) services. For each entity, I conducted a comprehensive assessment of their Information Security Assets, as well as a Risk Assessment and Management review. Following these evaluations, I identified gaps in information security and cybersecurity internal controls and provided an overall score of their information security and cybersecurity posture, including assessing Managed Security Service Providers (MSSP) utilized by clients. John Reza 2 P a g e
University of Riverside, CA 2020 – Present
Member of the Board of Advisors, Design Thinking
Inland Empire Health Plan, San Bernardino, CA 5/2019 – 8/2020 Deputy Chief Information Officer, Vice President of IT Governed all IT operations with the accountability of enterprise PMO portfolio of 120 projects while ensuring HIPAA Security Rule compliance. Authored charter for and chaired IEHP’s Portfolio Oversight Committee with the management of 120 projects. Acquired services of CrowdStrike to support InfoSec operations. Led department of 120 FTEs; successfully promoted six associates. Migrated IEHP employees post-COVID-19 pandemic to WFH.
• Diminished PMO attrition from 150% to 20%, closed 29 projects and enhanced agile methodology and adoption.
• Turned-around underperforming PMO by overhauling PMO resources, aligning them to functional business units, and developing a governance framework for portfolio management.
• Conducted an Enterprise Architecture assessment, wrote the charter, identified resources across IT functional units, and established a team and governance framework to inventory and maintain the current architecture of enterprise IT.
• Oversight of HL7/FHIR API development for interoperability with providers (Large physician offices, Hospitals, Clinics) and HIE for patient information in two of the largest counties in California. Core Systems Director & Chief Information Security Officer – Health Plan of San Joaquin 12/2016 - 5/2018
• Managed application development, IT operations, and data center teams. As the Chief Information Security Officer responsible for protecting the Confidentiality, Integrity, and Availability of electronic Protected Health Information (ePHI). Managed a budget of approximately $15M in OpEx and CapEx and a staff of forty-five union employees.
• I saved HPSJ $700K in vendor contracts in my first six months.
• Completed three RFPs from the inception phase, including vendor selection, negotiations, scoring, contract finalization, and implementation of DRaaS (Quest Media), an ITSM product (Ivanti), and enterprise-wide EDI.
(Edifecs). Completed all three in the entire life cycle within the first fourteen months.
• Negotiated an Enterprise Agreement with Microsoft to subscribe to their Cloud and migrated HPSJ’s On- Premises Outlook and Exchange. I received a commendation at an all-staff meeting from the CEO due to the flawless migration.
• Authored and revised fifteen Policy and Procedure documents to become compliant with the HIPAA Security Rule. Performed technical, non-technical, and risk assessment as required by HIPAA Security Rule. Co- Chaired the Privacy and Security Oversight Committee (PSOC) with the Chief Compliance Officer.
• Chaired the Change Advisory Board (CAB) and participated in the change request process. Created a risk score for all production changes to be adequately vetted and approved before implementation.
• Business Sponsor of a portfolio of initiatives, enterprise-wide projects, corporate and departmental objectives. Met budget and the on-time delivery of the entire portfolio.
• Oversight of the enterprise-wide implementation of SharePoint.
• Oversight of two successful upgrades of the Claims Administration Systems (QNXT) without any interruption to business.
• Oversight of HL7/FHIR API development for interoperability with providers (Large physician offices, Hospitals, Clinics) and HIE for patient information in San Joaquin County.
• We have implemented Ivanti’s Change Management module to bring automation and efficiency to the change management process and replaced the in-house legacy change management system.
• Created an internal process for the California Department of Health Care Services (DHCS) to encounter data to have advanced knowledge of HPSJ’s score on DHCS Quality Measures for Encounter Data.
• Managed the optimization of Contract Manager, a McKesson product to remediate existing flaws, and enhanced the workflow, including implementing Adobe Sign to automate the signature process for all provider contracts at the Managed Care Health Plan.
John Reza 3 P a g e
Vice President, Healthcare Consulting -System Soft Technologies – WWW.sstech.us 2014 - 2016 Reported to the CEO and managed the healthcare practice.
• Developed all healthcare consulting services, including detailed artifacts, collaterals, and brochures.
• Won new business and managed two healthcare clients with full P&L accountability.
• Product owner of the AC360 SaaS product, currently running at one of the Accountable Care Organizations that has successfully made $1.4M in Shared Savings with CMS.
• Managed a team of software engineers to develop AC360
• Provided Information Security consulting and evolved the service line through a Maturity methodology. Vice President, Healthcare Practice Leader, Genpact/Headstrong Healthcare Practice - 2011 - 2013 Genpact is a 7B dollar global company and one of the top five global Business Process Outsourcers with 53,000 employees.
Genpact acquired Headstrong.
• A core member of the acquisition team in 2013 when Genpact acquired JAWOOD, a $50M leading provider of business services to the healthcare payer industry.
• Worked for a hospital in TN to assist their CEO and Board of Directors with several pain points and recommended options, including evaluating their Revenue Cycle Management and billing issues. The client used the McKesson Star system but had not paid vendor maintenance fees, and they had a backlog of $40M of aging account receivables that they wanted to turn into added revenue. They also wanted to become Meaningful Use compliant by Oct 2013. Key Achievement: CEO and Board of Directors approved the resolution of billing issues and selected shortlisted vendors for implementation.
• Worked for the CEO of a behavioral healthcare system in TN, with five hospitals and completed several enterprise-wide projects: IT assessment, business and clinical process mappings of their entire Revenue Cycle Management, billing, and payroll; evaluation of current RCM and clinical systems with gap analysis and recommendation to replace their Hospital Information System. Additionally, I completed and provided a TCO analysis for outsourcing IT to an onshore third-party and implementing a Learning Management System for training, quality assurance, and compliance. Key Achievement: CEO and CFO received funding approval from the Board of Directors to implement all three initiatives. Chief Information Officer and Chief Information Security Officer, TMG Health 2010 - 2011
• An integral member of the Executive Team with responsibilities for all TMG’s strategic, tactical, and immediate operations of systems development, telecommunications, applied technology, technical services, corporate governance, data center, and call center operations. I managed a budget of 30M and a staff of 120 FTE, including application developers, systems analysts, network and database administrators, IT governance, Help Desk, IT audit, production control, a Tier IV data center, enterprise Email, telecommunications, and Call Center technologies.
• As Chief Information Security Officer, responsible for the HIPAA Security Rule and compliance, I worked closely with the Chief Compliance Officer to enforce security and privacy laws.
• Spearheaded a significant program of upgrading the Facets application as an enterprise-wide initiative. Four predecessors had not attempted the upgrade due to Facets being seven versions old and not supported by the vendor. This upgrade required coordination with the IT and Operations teams of fourteen clients and the internal TMG Business units covering 2.4M beneficiaries.
• Created an “Information Security Committee,” chaired the committee, and held quarterly meetings to promote cultural changes necessary to integrate information security standards and best practices into the mission and objectives of TMG Health.
• Worked with a vendor and finalized an agreement to arrange for external penetration testing. Completed the testing and used the findings to remediate.
John Reza 4 P a g e
President & Founder, Concilio Management Consulting Inc. 2000 - 2010
• Implemented all the interfaces required to convert and outsource the Clear Choice Health Plan from Clear Choice to Adaptis and managed a team of 25 individuals, including developers, business analysts, and project managers throughout the entire life cycle from requirements gathering through implementation. Key achievement: Completed the implementation of interfaces for ACH, Lockbox, ID cards & fulfillment, Pharmacy Management System, all inbound 837’s (electronic claims) from 14 Trading Partners, 2 Clearinghouses, and secondary crossover claims for Medicaid (837 outbound).
• Hawaii Medical Services Association (Blue Cross and Blue Shield of Hawaii) – Program Manager for the Core Systems Replacement Project responsible for the conversion of multiple lines of businesses from LRSP
(legacy) to QNXT systems (open platform), including Federal Plan, Employer-Union Trust Fund, and other PPO. and HMO. Plans. Managed the entire effort from requirements gathering to delivering into the production environment: controlled systems quality testing and three cycles of User Acceptance Testing. The total budget was $35M. Key achievement: Successfully converted 87,000 Health plan members from the legacy system to an open platform (i.e., QNXT from TriZetto).
• UnitedHealth Group/Prescription Solutions – Managed and gathered business requirements to implement Prior Authorization. Key achievement: Successfully conducted User Acceptance Testing for the Prior Auth System (PAS).
• Managed the entire effort (complete life cycle) to obtain compliance with the Sarbanes-Oxley Act (Section 404), readiness compliance for PeopleSupport, Inc. All finance and accounting controls, and IT general computing controls. I reported directly to the C.F.O./Executive Team and the Audit Committee. Wrote letters on behalf of the CIO, CFO, and CEO describing the methodology used. Those letters were used to testify to the external auditors and annual reports to shareholders. Key achievement: Auditor issued an unqualified opinion on management’s assessment of the effectiveness of the Company’s internal control over financial reporting, which was filed with SEC.
• Implemented PMO at the Blue Cross of California. Managed a cross-enterprise of 21 experienced professionals and performed local code remediation for four states of Mass, VA, CA, and Oklahoma. Set up a PMO from scratch, defined roles and responsibilities for the project team, and kept track of issues using an issue tracking system. I reported to the Vice President of Operations. Key achievement: Successfully met all federal deadlines. I took the program from a “chaos” state to a very well managed. Senior Manager, Ernst & Young L.L.P., Irvine, CA 1995 – 1999 Please see a recommendation on LinkedIn by Joe Cagnon about my work at Ernst & Young.
• Worked directly with the C-level individuals (e.g., C.I.O.) of SAFECO Life Insurance, Farmers Insurance, Farm Bureau Insurance, and 20th Century Insurance. I led several pursuits, sold, and delivered 10 million dollars of consulting work with profit and loss responsibility. I recruited 18 people from both campuses and experienced-hire recruiting. My human resource management skills include mentoring, annual performance evaluations, and professional development of 27 consultants.
• Implemented a Program Management Office (PMO) at Farm Bureau Insurance to integrate the Policy Management System Corporations S3+ into multiple business insurance lines, including homeowners, farms, and automobiles.
• Managed the redesigning of all business processes of 20th Century Insurance Company in Woodland Hills, California (renamed to 21st Century). Re-engineered the following business units: Executive, Product Development, Marketing & Distribution, Policyholder Administration, Investment Management, and all Support Processes (i.e., HR, IT, Legal). I managed the selection of a financial reporting package (Hyperion) for 20th Century Insurance.
• Engagement Director for converting a traditional life product into a VUL (Variable Universal Life, CK4) for SAFECO Insurance. I completed: requirements analysis, legacy data conversion, interface design and development, and identifying a modification to CK4, including particular “Life Insurance” business transactions.
• As Director of IS for Packard Bell/NEC, completed the integration of IS staff of 40 FTEs, systems, and processes into the client’s home office during plant shutdown oversaw IS staff exit interviews and transfers. At Digital Corporation Account Business Unit to align IT initiatives with business objectives. I developed 3- year strategic information systems plan for the CIO. John Reza 5 P a g e
Education
MBA Executive Program, Graduate School of Management University of California, Irvine, CA
Bachelor of Science in Management Information Systems (MIS) University of Hartford, West Hartford, Connecticut Certifications
- Program and Project Management - Certified by Ernst & Young University
- Six Sigma, Green Belt, Genpact
- Certified Information Systems and Security Professional (CISSP) – ISC2
- Design Thinking Program, University of California, Riverside Publications
• The Four Essential Ingredients for Healthcare Payers, Providers, and PBMs to Become Formidable Competitors: Cloud, Analytics, Mobility, and Process. Gear-up for CAMPing!
• New Laws Affecting Your Access to Your Electronic Health Records
• Give the Patients and Their Health Information a “Permanent Base!”
• What Does Digital Transformation Mean for the Healthcare Industry?
• An Open Letter to the US Healthcare System!
• Will TEFCA enable “North Star” architecture for public health? Webinars
• The Healthcare Payer Business Process Management (BPM) Imperative!
• Preparing for Healthcare Transformation - Building the Foundations for Success!
• Cloud Computing doesn’t have to be so cloudy for the Healthcare industry!
• The Migration to Best Practices – Advanced Analytics!
• Digital Transformation – Do or Die!
Technology Experience
Platforms: Client-Server, UNIX, PC, and Mainframe
Operating System: Windows 2007 and 10, MS-DOS, MVS, UNIX, AIX, OS/2 Databases: MS and Sybase SQL Servers, DB2, MS Access Hardware: IBM 3090, IBM ES/9000, IBM-PC, Dell, HP, DEC, AS/400 Tools: Remote Procedure Calls (RPC) and Triggers; Relational Databases (MS & Sybase); Test Director 7.5 / 6.0, MS-Project
Languages: 3rd and 4GLs; Programming languages including COBOL and Prolog, C++, MS SQL Environments: Web Browsers, Java, Pearl, CGI, HTML, HTTP, TCP/IP, ODBC, APIs, EAI, EDI, XML, J2EE, MQ, SQL, Test Director 7.5, VMware, HL7/FHIR
Products - SaaS: TriZetto Facets and QNXT, HMS, CBIZ, Stockell, Medsphere, Epic, PeopleSoft, Oracle, SAP HRIS, MS Great Plains, SharePoint, McKesson Contract Manager, Knowbe4, Clearwater Compliance, C-360, CrowdStrike
Cloud: Azure, Microsoft Government Cloud, Co-Location, DRaaS Call Center: Oracle Contact Center Anywhere: The All-in-One Contact Center, ShoreTel/Mitel SEIM: Splunk, McAfee, SolarWinds, RSA.
Firewalls, IDS, IPS: Cisco NGFW, FireEye, McAfee
US Citizen, Willing to relocate, Willing to travel up to 75%, Excellent references available upon being shortlisted
Contact this candidate