Profiles search
Jim Murphy
Information Security Architect
Durham, NC, United States
Details
Experience:
Jim is the Information Security Architect for OMMISS with 30+ years experience, predominantly in healthcare IT. He plans and designs enterprise-wide information security for major development projects, including the claims processing system for Medicaid and related plans, and the State Health Information Network. For the projects, he documents information security and technical architecture requirements and reviews security throughout project design and development : regulatory compliance, access control, data and network protection, business continuity, operational security, process documentation and project audit. Jim has written, taught and spoken on information security management, service continuity, security auditing and security certification training to diverse audiences.
2006 : Present
NC DHHS Office of MMIS Services
Information Security Architect
Local Mentor, SANS Institute, RTP, NC. 2005-2005. Leading review class preparing students for CISSP exam.
Technical Consultant, Epic rd Consulting, LLP, Chapel Hill, NC. 2004-2004. Assisting in development of web-based HIPAA gap analysis/security risk analysis tool set.
Consultant, NC Healthcare Information and Communications Alliance (NCHICA), RTP, NC. 2003-2004. Member of Information Security workgroup researching current security issues in healthcare.
Member of development team and speaker for HIPAA Security awareness seminars for NC Area Health Education Centers throughout the state.
Led development team updating HIPAA Security assessment tool.
Sr. Project Leader, Health Systems with Eliassen Group, Inc., Raleigh, NC. 2002-2003. Developed and implemented security project plans for long-term health care facilities; developed business continuity and contingency plans, IT security assessment and management plans for small businesses.
2002 :
Eolas Systems
Principal Consultant
Contracting with NC Dept of Health & Human Services
Leading IT security planning for the multi-divisional NC Medicare-Medicaid Information System replacement system implementation within the NC Department of Health and Human Services.
Evaluating and auditing organization and administrative security management, physical and environment security, data center operations security, regulatory compliance and business continuity practices.
2004 : 2006
Computer Task Group
Principal Consultant
Contracted to RF Micro Devices, Greensboro, NC.
Conductied Sarbanes-Oxley review of IT security within an international manufacturing company; provided assessment of key controls, process documentation, controls testing and remediation recommendations
2004 : 2004
Jefferson Wells
Security Consultant
HIPAA Coordinator :
Coordinated security policies and procedures at system level for hospitals, clinics, and Medical School resulting in a unified policy, standard, and procedure structure. Assisted in security risk assessments, initiated development of business continuity plans for Medical School and Clinics, resulting in a complete overview of the diverse departmental technology and a model for continuing to manage change and risk.
2004 : 2004
Univ. of NC Healthcare System, Chapel Hill, NC.
Security Consultant
2006 : Present
NC DHHS Office of MMIS Services
Information Security Architect
Local Mentor, SANS Institute, RTP, NC. 2005-2005. Leading review class preparing students for CISSP exam.
Technical Consultant, Epic rd Consulting, LLP, Chapel Hill, NC. 2004-2004. Assisting in development of web-based HIPAA gap analysis/security risk analysis tool set.
Consultant, NC Healthcare Information and Communications Alliance (NCHICA), RTP, NC. 2003-2004. Member of Information Security workgroup researching current security issues in healthcare.
Member of development team and speaker for HIPAA Security awareness seminars for NC Area Health Education Centers throughout the state.
Led development team updating HIPAA Security assessment tool.
Sr. Project Leader, Health Systems with Eliassen Group, Inc., Raleigh, NC. 2002-2003. Developed and implemented security project plans for long-term health care facilities; developed business continuity and contingency plans, IT security assessment and management plans for small businesses.
2002 :
Eolas Systems
Principal Consultant
Contracting with NC Dept of Health & Human Services
Leading IT security planning for the multi-divisional NC Medicare-Medicaid Information System replacement system implementation within the NC Department of Health and Human Services.
Evaluating and auditing organization and administrative security management, physical and environment security, data center operations security, regulatory compliance and business continuity practices.
2004 : 2006
Computer Task Group
Principal Consultant
Contracted to RF Micro Devices, Greensboro, NC.
Conductied Sarbanes-Oxley review of IT security within an international manufacturing company; provided assessment of key controls, process documentation, controls testing and remediation recommendations
2004 : 2004
Jefferson Wells
Security Consultant
HIPAA Coordinator :
Coordinated security policies and procedures at system level for hospitals, clinics, and Medical School resulting in a unified policy, standard, and procedure structure. Assisted in security risk assessments, initiated development of business continuity plans for Medical School and Clinics, resulting in a complete overview of the diverse departmental technology and a model for continuing to manage change and risk.
2004 : 2004
Univ. of NC Healthcare System, Chapel Hill, NC.
Security Consultant
Company:
NC DHHS Office of MMIS Services
About
CAREER OBJECTIVE
CAREER SUMMARY
Respectively and completely retired - certified Old Guy,
Profile Photo
