TW-SECURITY - Key Persons
Job Titles:
- Co - Managing Partner, Director Business Development
Keith joined tw-Security in 2015 and was a longtime colleague of Tom's since 2006. The following are Keith's bio highlights:
Over 35 years of experience in IT with 18 years focused on healthcare information security tactical and strategic initiatives
tw-Security, Partner, and Principal Consultant
Certified Information Systems Security Professional and Certified Project Manager
Key areas of expertise:
Providing virtual CISO, cybersecurity advisory, and tactical services for multiple covered entities and business associates.
Enterprise risk analysis initiatives, strategic assessments, and planning
Cross-referenced security programs to multiple standards and frameworks
HIPAA programs development and guidance
Incident response preparedness, workshops, tabletop exercises - created multiple playbooks, and breach management processes
Vendor/business associate compliance due diligence
Identity access management
Securing digital forensic Sexual Assault Nurse Examiner (SANE) photos
Biometrics security solutions
Former information security officer (ISO), Mercy Health (formerly Catholic Health Partners), serving for five and a half years: created an enterprise information security department and a program covering 24 hospitals across three states
Former information security data supervisor/administrator for Cleveland Clinic's nine Community Hospitals, serving for seven years; implemented a hands-on IR testing program
Adjunct Instructor, Department of Graduate Studies, Ursuline College, Cleveland, OH
Job Titles:
- Co - Managing Partner, Principal Consultant
Kerry joined tw-Security in 2012 and is the next most senior partner. The following are Kerry's bio highlights:
Over 30 years of experience in IT with 17 years focused on healthcare information security IT; risk analysis, security officer mentoring, security program development, HIPAA readiness, and OCR compliance audits
tw-Security, Partner, and Principal Consultant
Certified Information Systems Security Professional
Key areas of expertise:
Providing interim and virtual CISO, cybersecurity advisory, and tactical services for multiple covered entities including academic medical centers, and business associates
Enterprise risk analysis initiatives, strategic assessments, and planning
OCR breach response - detailed documentation catalog
Policy, procedure, and plans written for targeted audiences
Cross-referenced security programs to multiple standards and frameworks
HIPAA programs development and guidance
Incident response preparedness, workshops, tabletop exercises - created multiple playbooks, and breach management processes
Vendor/business associate compliance due diligence
Former - Director of Risk Management for ACS State Healthcare; IT security, HIPAA, disaster recovery/business continuity; conducted HIPAA compliance assessments in every state where ACS provided Medicaid support services
Former - Director of Security at RenewData (an eDiscovery services provider)
Federal information security experience supporting the Centers for Disease Control (CDC) and the Veterans Administration (VA)
Mark joined tw-Security in 2015 and was a longtime colleague of Tom's since 2006. The following are Mark's bio highlights:
Over 30 years of experience in IT and technical management, and 20 years of Information Security experience with a focus on strategic and tactical initiatives
tw-Security, Partner, and Principal Consultant
Certified Information Security Manager, Certified in Risk and Information Systems Control, ISACA Cybersecurity Audit Certificate
Providing cybersecurity advisory and CISO services for multiple covered entities and business associates
Key areas of expertise:
Enterprise risk analysis and risk management initiatives
Cybersecurity assessments with multiyear strategic planning
Security program maturity evaluations
HICP [Cybersecurity Act of 2015 (CSA), Section 405(d)],
NIST Cyber Security Framework (CSF)
Aligns security programs cross-referenced to multiple standards and frameworks
Prepares organizations to achieve SOC 2 with formal attestation, or attain ISO 27001 certificate of compliance
Performs incident response preparation and breach management
CISO mentoring
Healthcare resilience program assessments
Recognized in December 2016 and in December 2015 by Health Data Management magazine as one of the ‘50 Top Healthcare IT Experts' and by HealthcareInfoSecurity.com as one of the most influential people in healthcare information security in 2014
Former - Chief Information Security Officer for The Cleveland Clinic; responsible for the deployment of information security and disaster recovery best practices, and compliance with HIPAA, PCI, and Internal Control Effectiveness / SOX regulations and standards
Known for developing a ‘Book of Evidence' - guiding organizations on how to prepare for and pass an OCR audit
Tom's goal was to build a healthcare IT security and privacy consulting firm founded on the Certified Information Systems Security Professional (CISSP) Code of Ethics. The Code commits the professional to "act honorably, honestly, justly, responsibly, and legally." Read Tom's founder message here.
Known for his energetic style, Tom conducted multiple HIPAA programs (do you remember T.E.A.-Training, Education, and Awareness?)
He became well known as a public speaker throughout the state of Kansas and nationally, spreading the "HIPAA mission".
Job Titles:
- Partner
- Certified Information Security Manager
Wendell has over 28 years of experience in healthcare IT, and over 20 years of leadership in information systems, strategic initiatives, and security.
Wendell is a Certified Information Security Manager (CISM) whose key areas of expertise include enterprise risk management, virtual CISO, cybersecurity advisory and tactical services, HIPAA strategies, identity access management and audit solutions, call center security, and IT solutions.
He has a proven track record of driving alignment between security risk, IT, and business objectives, resulting in technology transformation and business performance improvement.
"Wendell has been a former customer, a colleague, and friend for almost 20 years. We are honored to have Wendell join our team. His professionalism, talent, and collaboration has benefited our customers and the tw-Security team."