Michael Mittelman
Details
Cloud Security
SANS Technology Institute
2022 : 2024
ESCP
Cybersecurity
Evolve Security Academy
2020 : 2020
Cybersecurity
QuarantineSec CompTIA Network+ & Security+ Training by Marcus J. Carey
2020 : 2020
MBA
Healthcare Management with a specialization in Finance
Fox School of Business at Temple University
2008 : 2010
BA
Biological Basis of Behavior
University of Pennsylvania
1999 : 2003
- Lead analyst on Infomation Security-GRC team
- Perform security assessments, including medical devices, IoT devices, and cloud
- responsible for cloud security and compliance, including building governance model for the cloud
- help redesign and perform Third-party risk assessments for TPRM program
- knowledge of ServiceNow and Logicgate's Riskcloud
- FAIR Analyst certified via RiskLens
- Work internally with key business stakeholders to ensure the security review process does not hinder their processes
- mentor others about cloud - how it works, security
- mentor new analysts
2021 : Present
Thomas Jefferson University Hospitals
Cyber Security Analyst II
Special focus on patient privacy, data governance and stewardship, vulnerability/risk assessments, cyber advisory, co-creation, patient registries, clinical trials
• Perform Cybersecurity/data privacy assessments/audits
o Recent project example : Assessment for a senior living community that included electronic systems centered skilled nursing, rehab, assisted living, independent living. Hired to run internal/external vulnerability assessments, OSINT, social engineering, data governance, phishing campaigns, patient privacy audits, HIPAA compliance, HITRUST, and third party risk evaluation.
• Formal engagement with a national foundation to assist with designing new information security and assurance models, including incident response, cyber hygiene, password policies, network administration and setup, cyber awareness training, and security controls. Hands on experience with core AWS services like EC2, S3. All work aligns with OWASP top 10.
• Active project work with a federal agency to design and develop clinical decision support tools (CDS) digital health tools using secure software development lifecycle (SDLC) while building processes and programs with patient and family stakeholders (extra focus on artificial intelligence, cybersecurity, privacy practices, and patient access)
• Work with organizations to develop patient journey design, patient advisory boards, health products/strategies, patient-focused messaging, disease management programs, insurance products, investment programs, research protocols, early access programs and clinical trials built for patients and families to improve recruitment and retention
2018 :
Freelance
Cybersecurity Consultant, Patient Insights and Healthcare Advisor
2019 :
United Network for Organ Sharing (UNOS)
Advisor, Board of Directors IT Advisory Council & OPTN Board Network Operations Oversight Committee
2019 :
Stanford Medicine X
Keynote Speaker, E-Patient Scholar, and Workshop Leader
Ambassador for Patient-Centered research
2017 :
Patient-Centered Outcomes Research Institute (PCORI)
Ambassador
Skills
Agile Methodologies, Business Development, Business Planning, Business Strategy, Clinical Trials, Co-creation, Consumer Insight, Cross-functional Team Leadership, Customer Service, Cybersecurity, Data Governance, Data Privacy, Design Research, Dialysis, Digital Health, Entrepreneurship, Healthcare, Healthcare Information Technology (HIT), Healthcare Management, Information Security, Innovation Management, Kidney, Kidney Transplant, Leadership, Life Sciences, Management, Market Development, Marketing, Market Research, Medicaid, Medicare, Network Security, Non-profit Administration, Nonprofit Organizations, Patient Advocacy, Patient Recruitment, Patient Reported Outcomes, Pharmaceutical Industry, Product Development, Product Launch, Product Management, Program Management, Public Speaking, Software as a Service (SaaS), Start-ups, Storytelling, Strategic Partnerships, Strategic Planning, Strategy, U.S. Health Insurance Portability and Accountability Act (HIPAA), Project Management, Business Intelligence, Data Analytics, Big Data, Healthcare Analytics, Non-profit, Cross-functional Team
About
As a trained scientist, cybersecurity and patient privacy and data rights professional, former editor for a world renowned medical journal, a healthcare professional, business executive, and long time patient and patient advocate, I try to leverage new solutions to help patients, businesses, and non-profits. I am continually learning, and I hope that I can help future/current entrepreneurs and companies develop their product(s) to help patients in all areas of the healthcare environment. Cybersecurity and Market access are of the utmost importance. I believe that care models can be changed, and I know there is room for innovation and real change in healthcare, healthcare products, and business model designs. I hope to change the patient experience, access to care, quality of care, and outcomes. I believe in value-based services and solutions, I believe that technology leadership must include people from all walks of life, and that design research in healthcare is only complete once patients are included. Long term, I want to be involved in global healthcare and in bringing help to those without a voice.
Specialties: Cybersecurity, Data Governance, Patient Privacy, User Experience Design, Design Research for products, Kidney Disease, Dialysis, Organ Transplant and Donation, insurance product development, Healthcare design innovation, Digital Health, Market planning, Product Development, Clinical Trial Design, Global product launch strategy, business development, clinical trial planning, pricing and reimbursement, market access solutions, medical device and pharmaceutical/biotech commercialization strategies, and health economics,
Profile Photo
