Profiles search
Loren Maloney
Privacy Officer and Cybersecurity Counsel at 3M Healthcare
Holden, MA, United States
Details
Experience:
2023 : Present
3M
Privacy Officer and Cybersecurity Counsel
I am responsible for leading the privacy team supporting 3M HealthCare, an $8B healthcare company that creates innovative software, manufactures medical devices and healthcare supplies and delivers direct patient care. I help ensure the appropriate collection and use of data for a wide variety of cloud-based software solutions, including speech recognition and natural language understanding, coding and grouper products, including tools that employ artificial intelligence and machine learning. I also oversee compliance activities for key regulatory frameworks, including HIPAA and GDPR, and support processes to identify, analyze, and manage data protection risks in 3M’s products, manufacturing and business operations.
2021 :
3M
Privacy Officer
I supported the global sales function and commercial licensing attorneys in negotiations of data protection (privacy & security) agreements and provided legal counsel and risk management for the Citrix procurement team. I also worked with internal product teams and other departments throughout the organization to help implement Citrix's data protection strategy to ensure that Citrix remained an industry leader in data privacy & security.
2018 : 2021
Citrix
Senior Data Protection Counsel
Responsible for daily management and oversight of compliance and privacy programs for Lahey Health System, Inc. and its affiliates. Lahey Health is a 14,000+ employee, $2 billion, dynamic and growing healthcare organization comprised of a 345 bed academic medical center and 550 physician organization headquartered in Burlington, MA, three community hospitals located in Beverly, Gloucester, and Winchester, MA, skilled nursing and senior care facilities, and home care and behavioral health providers.
Provided assistance with development and monitoring activities of the various organizational compliance programs and assisted the Vice President, Compliance and Privacy, in conducting regular program reviews to prevent illegal, unethical, or improper conduct. Facilitate and promoted activities to foster compliance awareness and conducted investigations throughout the organization and related entities.
Worked closely with each of the affiliate compliance and privacy program managers (i.e., Lahey Health Medical Center, Winchester Hospital, Northeast Health System, Lahey Health Continuing Care, Lahey health Behavioral Services) in setting annual goals and objectives, including development of the annual Work Plan, implementing system-wide compliance policies and consistently applying Lahey Health's Code of Conduct.
2017 : 2018
Lahey Health
System Director, Compliance & Privacy
I was responsible for oversight of all privacy program activities at the University of Massachusetts Medical School, a public health sciences center that includes a world class research institution that receives more than $250 million in annual research funding, three graduate schools (School of Medicine, Graduate School of Nursing, and Graduate School of Biomedical Sciences), the sole not-for-profit FDA-licensed vaccine manufacturer in the United States (MassBiologics) and a healthcare consulting group committed to transforming publicly-funded healthcare (Commonwealth Medicine).
I focused on the development and maintenance of a robust privacy program that prioritized the protection of sensitive data while enhancing the organization's ability to commercially benefit from data use across a wide spectrum of business and academic enterprises.
I advised senior UMMS leaders on privacy and compliance risks, including mitigation strategies related to research compliance risks, conducted investigations and strategically mitigated privacy and compliance issues, performed comprehensive risk assessments, developed and presented educational programs and analyzed legal issues and negotiated contracts. I also worked closely with IRB staff and members to advise on privacy and compliance risk mitigation and trial-specific inquiries.
2016 : 2017
UMass Medical School
Senior Privacy Officer
3M
Privacy Officer and Cybersecurity Counsel
I am responsible for leading the privacy team supporting 3M HealthCare, an $8B healthcare company that creates innovative software, manufactures medical devices and healthcare supplies and delivers direct patient care. I help ensure the appropriate collection and use of data for a wide variety of cloud-based software solutions, including speech recognition and natural language understanding, coding and grouper products, including tools that employ artificial intelligence and machine learning. I also oversee compliance activities for key regulatory frameworks, including HIPAA and GDPR, and support processes to identify, analyze, and manage data protection risks in 3M’s products, manufacturing and business operations.
2021 :
3M
Privacy Officer
I supported the global sales function and commercial licensing attorneys in negotiations of data protection (privacy & security) agreements and provided legal counsel and risk management for the Citrix procurement team. I also worked with internal product teams and other departments throughout the organization to help implement Citrix's data protection strategy to ensure that Citrix remained an industry leader in data privacy & security.
2018 : 2021
Citrix
Senior Data Protection Counsel
Responsible for daily management and oversight of compliance and privacy programs for Lahey Health System, Inc. and its affiliates. Lahey Health is a 14,000+ employee, $2 billion, dynamic and growing healthcare organization comprised of a 345 bed academic medical center and 550 physician organization headquartered in Burlington, MA, three community hospitals located in Beverly, Gloucester, and Winchester, MA, skilled nursing and senior care facilities, and home care and behavioral health providers.
Provided assistance with development and monitoring activities of the various organizational compliance programs and assisted the Vice President, Compliance and Privacy, in conducting regular program reviews to prevent illegal, unethical, or improper conduct. Facilitate and promoted activities to foster compliance awareness and conducted investigations throughout the organization and related entities.
Worked closely with each of the affiliate compliance and privacy program managers (i.e., Lahey Health Medical Center, Winchester Hospital, Northeast Health System, Lahey Health Continuing Care, Lahey health Behavioral Services) in setting annual goals and objectives, including development of the annual Work Plan, implementing system-wide compliance policies and consistently applying Lahey Health's Code of Conduct.
2017 : 2018
Lahey Health
System Director, Compliance & Privacy
I was responsible for oversight of all privacy program activities at the University of Massachusetts Medical School, a public health sciences center that includes a world class research institution that receives more than $250 million in annual research funding, three graduate schools (School of Medicine, Graduate School of Nursing, and Graduate School of Biomedical Sciences), the sole not-for-profit FDA-licensed vaccine manufacturer in the United States (MassBiologics) and a healthcare consulting group committed to transforming publicly-funded healthcare (Commonwealth Medicine).
I focused on the development and maintenance of a robust privacy program that prioritized the protection of sensitive data while enhancing the organization's ability to commercially benefit from data use across a wide spectrum of business and academic enterprises.
I advised senior UMMS leaders on privacy and compliance risks, including mitigation strategies related to research compliance risks, conducted investigations and strategically mitigated privacy and compliance issues, performed comprehensive risk assessments, developed and presented educational programs and analyzed legal issues and negotiated contracts. I also worked closely with IRB staff and members to advise on privacy and compliance risk mitigation and trial-specific inquiries.
2016 : 2017
UMass Medical School
Senior Privacy Officer
Company:
3M
Spoken Language:
French
About
Experienced lawyer with a diverse work history in healthcare, higher education, research and technology - all focused on privacy, security, data protection and regulatory compliance. Skilled in navigating data protection issues and mitigating digital risks while enabling advanced data use models. Passionate about building effective, business-aware compliance programs that are an asset to the organization. Level-headed and practical data protection professional with a J.D. from the University of Connecticut School of Law, HCCA and IAPP certifications and a seasoned outdoor guide and wilderness survival expert.
Profile Photo
