Farruk Mir

Tri-City Medical Center | San Diego, CA | June 2018 – Present Team Size: 23 IT Professionals | Budget Managed: $4M+

Provide executive-level strategic leadership and operational oversight for all IT operations, cybersecurity, infrastructure, applications, and telecommunications functions at a complex, multi-site healthcare organization. Serve as primary technology advisor to C-suite executives and department heads, aligning IT strategy with clinical, operational, and financial objectives.

Executive Leadership & Technology Strategy:

• Developed and executed comprehensive, long-range data-driven IT strategies aligned with organizational mission and goals, integrating multi-platform analytics across EMR, financial, and patient record systems to enhance executive decision-making and measure organizational impact
• Served as primary technology advisor to C-level executives and department heads , aligning IT strategy with business goals and optimizing operational workflows across all departments
• Partnered with leadership teams to develop custom dashboards and reporting solutions , enabling data-driven technology strategies and accurate ROI prediction for technology investments
• Supervised and managed all phases of IT projects , ensuring adherence to best practices, industry standards, and regulatory requirements through to successful completion and implementation
• Represented the organization in vendor, partner, and industry relationships , fostering collaboration and mutual growth opportunities with key industry partners

Information Systems & Infrastructure Management:

• Led enterprise infrastructure modernization initiative , designing, procuring, and replacing legacy network infrastructure including Wi-Fi systems with multi-domain interconnectivity across domains through advanced firewall rules
• Implemented ADManager and SCCM for automated provisioning and infrastructure management, significantly reducing manual tasks and improving overall operational efficiency
• Oversaw enterprise-wide IT operations , ensuring reliable, secure, and efficient system performance across all clinical and operational platforms
• Managed and optimized LAN/WAN, wireless technologies, data and voice transmission , and integrated enterprise systems supporting clinical and operational functions
• Developed and tested comprehensive disaster recovery and business continuity plans , ensuring uninterrupted access to critical data and financial processing capabilities
• Led cloud migration initiatives , enhancing remote access security through Multi-Factor Authentication (MFA) implementation and improving workforce productivity

Cybersecurity, Privacy & Risk Management:

• Developed and enforced enterprise-wide IT security policies aligned with SOC2, HITRUST, HIPAA, NIST, and PCI frameworks , ensuring full regulatory compliance and proactive risk mitigation
• Established SIEM-based security frameworks and implemented PCI-compliant transaction processing protocols , significantly strengthening the organization's overall security posture
• Led incident response strategies , including the rapid mitigation of a major cyberattack in 2023 , protecting critical patient data and organizational assets from significant breach
• Developed and maintained IT security policies, incident response plans, and procedures in accordance with HIPAA and NIST standards to protect the organization and ensure effective response to security incidents and breaches
• Ensured protection of electronic protected health information (ePHI) in full compliance with HIPAA Security Rule and all related regulatory standards
• Established access controls, internal controls, and monitoring systems to safeguard organizational data and sensitive patient information

Financial & Operational Stewardship:

• Developed and managed departmental operating and capital budgets exceeding $4 million , consistently optimizing ROI across IT lifecycle management, infrastructure upgrades, and outsourced IT services
• Maintained strong vendor partnerships and contract negotiations , optimizing value, performance, and service quality across all technology vendors and managed service providers (MSP)
• Implemented cost-effective technology solutions , balancing innovation with fiscal responsibility while maintaining high-quality service delivery standards
• Monitored productivity metrics and service performance indicators , implementing corrective actions when necessary to maintain service excellence

Leadership, Supervision & Talent Development:

• Built, led, and sustained a high-performing team of 23 IT professionals across IT, applications, and telecommunications functions, ensuring alignment with organizational mission and strategic goals
• Recruited, trained, developed, mentored, and retained technical staff at all levels , from helpdesk to senior network and systems engineers, both onsite and remote
• Established clear performance goals, regular performance evaluations, and development plans supporting continuous learning, professional growth, and succession planning
• Fostered a culture of collaboration and continuous quality improvement across departments to support clinical and operational excellence
• Led Incident Response & ITSM processes , ensuring rapid resolution of service disruptions while improving overall system resilience and service continuity
• Led ERP system optimization initiatives , integrating enterprise resource planning platforms with EMR, financial management, and supply chain systems to create a unified, data-driven operational ecosystem
• Collaborated with C-suite executives and department heads to align ERP system capabilities with organizational strategic goals , improving cross-departmental workflow efficiency and financial reporting accuracy
• Oversaw ERP data governance and integrity frameworks , ensuring accurate, reliable, and compliant data flows between ERP and ancillary healthcare systems
• Managed ERP vendor relationships and contract negotiations , ensuring optimal system performance, timely upgrades, and alignment with evolving organizational needs

Led all IT operations, infrastructure design, cybersecurity, and systems management for a regional medical center. Built the entire IT department and infrastructure from the ground up, managing a team of 15 IT professionals and overseeing a $3M+ annual technology budget.

Infrastructure & Systems Management:

• Built and managed enterprise IT infrastructure from the ground up , including Network, WiFi, Telecommunications, Active Directory, Email, firewalls, and cloud-based solutions supporting full medical center operations
• Coordinated and managed all onsite technical requirements for new EMR implementation , ensuring seamless integration with clinical workflows and minimal operational disruption
• Configured and deployed complete virtual infrastructure on VMware for servers and Virtual Desktop Infrastructure (VDI), modernizing the organization's computing environment
• Set up and deployed enterprise SAN (Storage Area Network) infrastructure for scalable, high-availability data storage
• Deployed enterprise antivirus, threat detection, and Data Loss Prevention (DLP) solutions , significantly improving the organization's overall security posture
• Designed Dragonwave Horizon Quantum microwave satellite to extend network connectivity to satellite locations within a 3-mile radius , effectively expanding WAN infrastructure to remote locations
• Set up department-specific solutions including inventory and warehouse management systems, clinical lab systems, and temperature monitoring systems to support diverse operational needs

Cybersecurity & Compliance:

• Developed and implemented cybersecurity policies and risk mitigation frameworks aligned with HIPAA, PCI, and NIST standards , ensuring full regulatory compliance across all systems
• Wrote and enforced governing cybersecurity policies for the workforce to implement and follow, establishing a culture of security awareness and organizational accountability
• Strategized Disaster Recovery and Incident Response plans for various possible scenarios, following NIST and HIPAA guidelines to ensure organizational resilience and rapid recovery
• Designed and deployed secure cloud-based and on-premises solutions , optimizing security and accessibility for both onsite and remote workforces

Business Intelligence & Innovation:

• Led business intelligence (BI) initiatives , designing custom dashboards integrating financial, donor, and operational data for improved reporting and program evaluation
• Developed custom IT solutions to address specific business needs, driving measurable operational improvements and significant cost savings
• Collaborated with cross-departmental teams to assess IT needs and properly integrate and secure systems across all organizational functions

Leadership & Talent Development:

• Hired and built the entire IT department from scratch , recruiting technical staff at all levels from helpdesk technicians to senior network and systems engineers
• Established team performance standards, accountability frameworks, and development plans to ensure continuous growth and service excellence
• Fostered a collaborative, service-oriented team culture aligned with organizational mission and values

Administered and maintained enterprise network infrastructure, security systems, and server environments, ensuring high availability, performance, and regulatory compliance for a financial institution.

• Managed LAN/WAN infrastructure, VPN tunnels, and network security protocols , ensuring high availability and optimal system performance across the organization
• Performed system hardening, penetration testing, and compliance audits , significantly improving overall security posture and reducing organizational vulnerabilities
• Administered Windows & Linux servers, Active Directory, DNS, and DHCP , optimizing enterprise IT environments for reliability and performance
• Developed automation tools to enhance network monitoring , reducing system downtime and improving overall operational efficiency
• Ensured regulatory compliance for a financial institution, maintaining adherence to applicable security and data protection standards