SANDRA CUMMINS
Elkhorn
Summary
Information security professional with strong experience in systems analysis, incident response, risk management, and compliance with state, federal, and international regulations seeks GRC Analyst position with cybersecurity team.
Overview
20
20
years of professional experience
Work History
Information Security Analyst
Boys Town
02.2020 - Current
- Boosted cybersecurity awareness among employees through employee comms, NCSAM activities, posters, flyers
- Developed plans to safeguard computer files against modification, destruction, or disclosure
- Created and led Security Ambassadors group
- Developed clear documentation of policies, procedures, and guidelines related to information security management within the organization
- Conducted annual HIPAA risk assessment
- Educated and trained users on information security policies and procedures
- Responsible for the creation and management of security exception requests
- Performed over 300 risk assessments to identify appropriate security concerns
- Developed phishing campaign program and reported monthly and quarterly metrics to compliance committees
Security Analyst II
Infogroup NKA Data Axle USA
07.2019 - 02.2020
- Implemented the IT Governance, Risk and Compliance management program under the direction of the Director of Information Security
- Managed compliance efforts with applicable regulatory and legal requirements
- Identified opportunities for process improvements to deliver increasing operational efficiency
- Worked closely with global business, contract and legal teams to assess proposed terms and conditions, aligned with appropriate risk profile and provided feedback on changes needed
- Identified trends and early indicators regarding issues and reported to management
Regional Information Security Analyst
Catholic Health Initiatives
07.2018 - 07.2019
- Implemented new security oversight program to bolster accountability and improve confidence in data security
- Developed a secure SharePoint team site to facilitate case logs, vulnerability reports, and dashboards
- Assessed the impact of new and modified policies and standards on the organization
- Spread awareness of current cybersecurity campaigns and initiatives
- Conducted security risk assessments and inspections
- Investigated all reported security incidents and issued sanctions where appropriate
- Responded to major incidents, directed bridge calls, united resources from multiple IT departments
- Served as liaison between local market and national teams, stakeholders and security teams
- Ensured compliance with security requirements with data privacy laws and regulations at the state, federal, and international levels
- Engaged Corporate Responsibility Officers and established ongoing monitoring and assessment of security controls
- Created clinic risk survey leveraging Microsoft Forms to prioritize in-person site assessments
Pharmacy Applications Analyst III
Catholic Health Initiatives
10.2013 - 07.2018
- Oversaw the implementation of Pyxis ES Medstation and Anesthesia, taking 30 hospitals from planning to support
- Liaison between technical staff and business subject matter experts
- Ensured new installations integrated with current application data and technical environments
- Created standardization of documentation and ensured documentation was provided to support training of applications
- Provided mentoring and training to junior application analysts
- Implemented new services into production
Business Systems Sr Analyst
Dell Services
11.2012 - 10.2013
- Cerner PharmNet application support for Tenet Health
- New product, IV set, order set, order sentence build
- Pharmacy billing including HCPCS and QCF calculation
- Responsible for upgrade testing and new package implementation into test and production environments
- Contributed new and revised existing documentation used for troubleshooting and support.
Clinical Systems Analyst
Nebraska Methodist Health System
01.2010 - 10.2012
- Project lead for Cerner Millennium ePrescribe Ambulatory implementation
- Provided solutions build, testing, training, implementation, and post go-live support for 300 providers
- Cerner Millennium PharmNet support for a three hospital health system
- Steady-state maintenance of PowerPlans, order catalog, medication order sentences
- Consulted on electronic medication reconciliation process for CPOE Acute project
MRI/Radiologic Technologist
Jennie Edmundson
04.2008 - 02.2010
- Performed a variety of imaging procedures per radiology protocol using a Philips Achieva 1.5T and a GE 1.5T Horizon LX
- Creative positing of patients and imaging props to achieve the best diagnostic images in the radiology department and using portable x-ray equipment in patient exam rooms
Certified Pharmacy Technician
Methodist Hospital
04.2004 - 04.2008
- Implemented standard procedures for mixing, packaging and labeling pharmaceuticals to ensure quality, security and proper disposal.
- Assisted other pharmacy staff with drug inventory, purchasing, and receiving.
Education
Master of Science - Cybersecurity
Bellevue University
Bellevue, NE08.2019
Bachelor of Science - Health Studies
Nebraska Methodist College
Omaha, NE2008
Associate of Science - Radiologic Technology
Nebraska Methodist College
Omaha, NE2007
Skills
- Excellent critical thinking, analytical, and problem-solving skills
- Strong experience with Microsoft Windows and Microsoft products
- Product management and change management skills
- Negotiation and mediation skills
- Working with constantly shifting priorities
- Managing multiple projects simultaneously
- Ability to communicate at all levels within the organization and externally in an articulate, professional manner
- Knowledge of HIPAA, PCI, and critical security controls
Timeline
Information Security Analyst
Boys Town
02.2020 - Current
Security Analyst II
Infogroup NKA Data Axle USA
07.2019 - 02.2020
Regional Information Security Analyst
Catholic Health Initiatives
07.2018 - 07.2019
Pharmacy Applications Analyst III
Catholic Health Initiatives
10.2013 - 07.2018
Business Systems Sr Analyst
Dell Services
11.2012 - 10.2013
Clinical Systems Analyst
Nebraska Methodist Health System
01.2010 - 10.2012
MRI/Radiologic Technologist
Jennie Edmundson
04.2008 - 02.2010
Certified Pharmacy Technician
Methodist Hospital
04.2004 - 04.2008
Master of Science - Cybersecurity
Bellevue University
Bachelor of Science - Health Studies
Nebraska Methodist College
Associate of Science - Radiologic Technology
Nebraska Methodist College
Similar Profiles
Kassidy GumKassidy Gum
Talent Acquisition Sourcing Specialist at Boys TownTalent Acquisition Sourcing Specialist at Boys Town
Michael OkpalefeMichael Okpalefe
Information Security Analyst (GRC) at Boys TownInformation Security Analyst (GRC) at Boys Town
April HitzApril Hitz
Behavioral Interventionist at Boys TownBehavioral Interventionist at Boys Town
Jenny SondermanJenny Sonderman
Regional Sales Manager at Midland Vet ServicesRegional Sales Manager at Midland Vet Services
Carleigh RamosCarleigh Ramos
Daycare Assistant at PersonalDaycare Assistant at Personal