Profiles search

Anthony Beebout M.S., GSLC

Division Cybersecurity Officer - Northern California at CommonSpirit Health
Sacramento, CA, United States

Details

Education: Master of Science (M.S.)

Economic Crime & Fraud Management

Utica College

2006 : 2012

BS - Information Systems

Information Systems Management

University of Phoenix

1997 : 2000
Experience: Act as regional liaison and subject matter expert to hospitals and clinics as it pertains to cybersecurity needs (policy compliance, audit, incident response, assessments, investigation, vulnerability remediation, training...etc.).

2020 : Present

CommonSpirit Health

Division Cybersecurity Officer

Lead Risk Assessment Team focused on External Third Party Risk. Utilizing a NIST based control set, assessed vendors and third parties prior to establishing and throughout their relationship with the organization. I have contributed significantly to improved efficiency within the team, relying on my past technical experience and ability to streamline processes. Additionally, having such a deep understanding of Health Care Compliance and Privacy, I am often consulted on privacy issues or concerns that may arise.

2018 : 2020

Dignity Health

GRC - Cybersecurity Third Party Risk - Lead

Managed privacy and investigations team; handling all facets of privacy incident management and investigations, fraud, and other workplace investigations such as, drug diversions and contract (BAA) analysis.

2017 : 2018

UC Davis Medical Center

Manager of Privacy and Investigations

Role changed from Facility Privacy Liaison to Facility Compliance Professional

Investigate privacy incidents. Report privacy incidents at both state and federal levels. Manage contact with impacted patients and others involved. Interview all necessary parties to determine the scope and reportable nature of breaches. Act as subject matter expert on both privacy issues and compliance concerns (Stark, Anti-Kickback, Corporate Integrity Agreement, Physician Payments, Contracts, De Minimus, 2567 Corrective Action Plans, HITECH, PCI-DSS, OCR, HIPAA 45 CFR 160-164, and CA HSC 1280.15...etc). Act as first contact for all hotline calls originating against facilities. Perform Privacy Impact Assessments against new projects and technologies. Perform Privacy Assessments against hospital departments. Produce monthly and quarterly reports on the state of privacy and compliance at facilities. Manage dissemination of all privacy and compliance policy updates to appropriate audiences. Manage dissemination of Annual Compliance Education training, working with leadership to ensure all workforce members complete the initiative by the established due date. Work closely with hospital Executive Leadership to ensure that all issues are disclosed in a timely manner. Chair monthly Compliance Committee. Provide privacy and compliance report out to hospital board. Always working with a high degree of integrity and confidentiality.

2014 : 2017

Dignity Health

Facility Compliance Professional

Oversee and ensure implementation and adherence to Dignity Health's privacy and security policies. Dedicated to multiple facilities within greater Sacramento region. Receive and investigate privacy complaints/breaches. Provide required notifications to (Federal, State) entities. See Facility Compliance Professional role for all privacy related duties.

2014 : 2014

Dignity Health

Privacy Liaison
Company: CommonSpirit Health
Years of Experience: 29

Skills

Agile, Application Security, Business Analysis, Business Process Improvement, Change Management, Computer Forensics, Corporate Fraud Investigations, Cybersecurity, Data Analysis, Data Privacy, Data Recovery, Disaster Recovery, eDiscovery, EHR, Fraud Investigations, GRC, Healthcare Compliance, Healthcare Information Technology (HIT), HIPAA, HITECH, HITRUST, Incident Management, Information Management, Information Security Management, IT GRC, ITIL v3 Foundations Certified, IT Operations, IT Security Assessments, IT Strategy, Leadership, Management, NIST 800-53, Privacy, Privacy Compliance, Privacy Policies, Privacy Regulations, Process Improvement, Requirements Analysis, Risk Assessment, Risk Management, RSAM, Security Awareness, Security Policy, Server Architecture, Servers, Systems Analysis, Vendor Risk, Vulnerability, Vulnerability Management

About

Experienced and tech-minded compliance, privacy and cyber-security professional with a demonstrated history of working within various technical and professional roles within the health care industry. Although health care focused, this experience easily transcends across all industries. I am knowledgeable of privacy focused regulations such as HIPAA, HITECH, CMIA, GDPR, PCI-DSS and I have a long history of working with those at all levels of the organization (Legal, Executive Leadership, Board Members, Compliance, Audit, IT Leadership, Business Analysts, Technical Team Members...etc.). Holding a BS in Information Systems and a Masters in Economic Crime & Fraud Management, my passion is knowing that I am making every effort to ensure my organization is doing the right thing and that I am moving the organization forward with integrity and excellence as the goal.