John Smith
Overview
29
29
years of professional experience
Work History
Chief Information Security Officer
Ann & Robert H. Lurie Children’s Hospital of Chicago
Chicago, IL
01.2001 - 01.2024
- Initiated and led information security program for multifaceted nationally recognized pediatric medical center
- Diverse executive cybersecurity leadership included hospital, research, community, and clinically integrated business ventures
- Responsibilities included strategy & roadmap, cyber risk management, controls selection/design/effectiveness/assurance, training and awareness, identity access, third-party risk, active partnership with legal and corporate compliance
- Program maturity progress, roadmap advancements and control strengths outcomes: Continual Program Management Assessments benchmarked above healthcare industry (measured by EY)
- Annual financial IT audit resulted in no material findings over 5 years (measured by PWC and RSM)
- Cyberinsurance premiums reduced by 6.5% during industry average increase of 15% (measured by Marsh)
- Directly led selection, implementation, and operations of initiatives to reduce loss potential and enable business goals: Identity Access Management platform RBA automation for 15K+ workforce to support strategic ERP migration
- Privileged Access Management deployment to reduce threat surface w/ full onboarding of 100 accounts in 30 days
- Remote access, web security and threat intelligence migration to Secure Access Service Edge reducing costs and increasing overall security posture
- Deployed continual simulation training and awareness campaigns to reduce susceptibility from 17% to 3.7%
- Project owner for 3-year $65M new facility technology infrastructure selection, staging, testing, validation, and implementation completed on time and budget
- Consistently negotiated significant third-party solution acquisition and operating costs reductions (measured by Gartner)
Manager Technology Risk Consulting
Arthur Anderson
Chicago, IL
01.1997 - 01.2001
- Recruited within firm’s flagship office as part of reinvention of services focus to assist fortune 500 clients in achieving technical resiliency
- Responsibilities included development of innovative risk management frameworks, project management of client security infrastructure improvements and recruitment of technical consulting resources
- Served as technology audit manager to provide opinion assistance for financial reporting audit teams, co-developed organizational enterprise technology risk assessment methodology utilizing mitigation framework
- Implemented enterprise security and network systems management solutions for national manufacturing, healthcare and financial services clients
- Leadership of full technical security assessments and detailed perimeter penetration studies, as well as development of business model for ongoing security strategy improvement services
- Developed firm-wide information security training, acted as campus lead for recruitment and hiring of technical specialists, served as formal mentor for consultant development, directed quality assurance initiatives within risk consulting practice
Information Systems Analyst
Northwest Community Healthcare
Arlington Heights, IL
01.1995 - 01.1997
- Expansive front-line information technology role within progressive independent healthcare provider organization
- Boundless opportunity to contribute to endpoint, network, server, and database team success
- Conducted mission critical technical project management efforts including design of standard desktop architecture to support EHR application implementation
- Participated in enterprise directory design and implementation, supported user-based access issues
- Administered Novell and Windows NT host platforms
Timeline
Chief Information Security Officer
Ann & Robert H. Lurie Children’s Hospital of Chicago
01.2001 - 01.2024
Manager Technology Risk Consulting
Arthur Anderson
01.1997 - 01.2001
Information Systems Analyst
Northwest Community Healthcare
01.1995 - 01.1997
Similar Profiles
Amreena SuriAmreena Suri
Research Lab Manager at Stanley Manne Children’s Research Institute, Ann & Robert H. Lurie Children’s Hospital of ChicagoResearch Lab Manager at Stanley Manne Children’s Research Institute, Ann & Robert H. Lurie Children’s Hospital of Chicago
Marcus IngramMarcus Ingram
Senior Director, Ambulatory Business Operations at Ann & Robert H. Lurie Children’s Hospital of ChicagoSenior Director, Ambulatory Business Operations at Ann & Robert H. Lurie Children’s Hospital of Chicago
Arnita RussellArnita Russell
Manager of Health and Welfare Benefits at Ann & Robert H. Lurie Children's Hospital of ChicagoManager of Health and Welfare Benefits at Ann & Robert H. Lurie Children's Hospital of Chicago
Arthur BaylorArthur Baylor
Supervisory IT Specialist (INFOSEC) Chief Information Security Officer, Chief of Information Assurance Branch/Bureau Chief Privacy Officer at National Telecommunications and Information AdministrationSupervisory IT Specialist (INFOSEC) Chief Information Security Officer, Chief of Information Assurance Branch/Bureau Chief Privacy Officer at National Telecommunications and Information Administration
Casey DearcornCasey Dearcorn
Chief Information Officer / Chief Information Security Officer (CIO/CISO) at Northwest CollegeChief Information Officer / Chief Information Security Officer (CIO/CISO) at Northwest College