Ali Massihi MS, CCSK, CNDA

Cybersecurity Specialist at U.S. Department of Health and Human Services (HHS)

Vienna, VA, United States

Details

Education: Master of Science (M.S.)

Health Informatics

George Mason University

2012 : 2015

Bachelor of Science (B.S.)

Health Systems Management

George Mason University

2002 : 2007

Experience: Provides support and technical expertise around Health IT and Health IT policies including standards, health informatics, healthcare technology systems, security/privacy technologies and policies.

Collaborates with key stakeholders in the Health IT industry including providers, vendors, developers and other Federal agencies.

Develops policies and standards in accordance with the National Institute of Standards and Technology (NIST).

2016 : Present

U.S. Department of Health and Human Services (HHS)

Cybersecurity Specialist

Serves as the subject matter expert on all HIPAA assessment matters and delivers the highest quality advisory services.

Consults with clients, including Fortune 100 companies, and provides direction from a gap analysis or risk assessment perspective for successful HIPAA compliance implementation.

Provides “best in class” IT Security expertise to recommend and coordinate the development, enhancement, and maintenance of information system security posture and processes.

Reviews client policies and procedures and recommends solutions to improve program operations including Disaster Recovery and Business Continuity Management plans.

Visits project sites of clients to conduct security assessments and ensure compliance with physical, technical and administrative safeguards.

2015 : 2016

Veris Group, LLC

Cyber Security Analyst/HIPAA Security Consultant

This program is designed for Healthcare Information Management Systems Society (HIMSS) student members who are graduate-level students majoring in healthcare informatics and information technology-related fields at local colleges and universities.

Participated in seminars, meetings and events aimed at improving health care delivery through the use of Information Technology.

Mentored directly by a professional in the field of Health IT and became familiar with evolving technologies, current challenges and future goals within the healthcare field.

2015 : 2015

HIMSS

Mentee (Spring 2015 Mentorship Program)

Appointed to Team Lead within first two weeks of starting and managed a team of 4 colleagues until project completion.

Performed Certification and Accreditation (C&A) activities, security categorization on IT systems, and provided guidance to the U.S. Federal Government using NIST 800-53 standards.

Strengthened security posture utilizing the Risk Management Framework and supported the overall security program by evaluating and implementing policies and procedures.

Created detailed Security Assessment Reports on information systems and applied corrective action plans for remediation and compliance.

2014 : 2014

Lunarline, Inc

Cyber Security Analyst

Provided Administrator level support for Active Directory, Microsoft Exchange Management Console and numerous web-based enterprise applications.

Monitored network using Alert Logic Intrusion Detection System and coordinated efforts with offsite Security Operation Center to deliver 24/7 protection.

Served as the IT Security subject matter expert and provided clients with relevant security news and briefings.

2012 : 2014

The Signature Group

Network Operations Center Engineer

Company: U.S. Department of Health and Human Services (HHS)

Years of Experience: 15

Spoken Language: Farsi

Skills

Access, Active Directory, Analysis, Budget, Budgets, Business Analysis, Business Development, Business Process Improvement, Computer Security, Consulting, Customer Service, Data Analysis, DoD, Enterprise Software, Government, Healthcare, Healthcare Information Technology, Health Information Systems, Human Resources, Information Assurance, Information Security, Information Technology, Leadership, Management, Microsoft Excel, Microsoft Exchange, Microsoft Office, Microsoft Word, Negotiation, Networking, Network Security, Outlook, PowerPoint, Process Improvement, Program Management, Project Management, Project Planning, Proposal Writing, Research, Security, SharePoint, Social Media, Software Documentation, Strategic Planning, Team Building, Team Leadership, Training, Troubleshooting, Visio

About

Master of Science (M.S.) in Health Informatics, Certified Ethical Hacker (CEH), Certificate of Cloud Security Knowledge (CCSK), Certified Network Defense Architect (CNDA), Security+ and COR Level 2 certified. I have valuable knowledge of the healthcare industry and numerous aspects of Information Technology. My professional experience, educational background and certifications cover a wide range of skill sets since I am eager to learn and quickly become familiar with new technologies.

M.S., Health Informatics, George Mason University, December 2015

B.S., Health Systems Management, George Mason University, August 2007

Clearance: “Public Trust” granted by Defense Industrial Security Clearance Office

Memberships:

Upsilon Phi Delta National Honor Society

Healthcare Information and Management Systems Society (HIMSS) NCA-Chapter