Brian Freedman is a Senior Information Assurance Analyst at Security Risk Solutions, Inc. In this capacity, Mr. Freedman leverages deep project management and technical experience in order to lead key elements to several Health-Information Technology (IT), Privacy and Security initiatives. One specific example includes Mr. Freedman’s role as Deputy Program Manager / Technical Lead for a large State of West Virginia HIPAA Security Risk Assessment effort. This effort involves a deep HIPAA Security Rule assessment on behalf of multiple State agencies in order to ensure compliance and program maturity. He helped to design and develop solutions that allowed the State of West Virginia to manage diverse risks through a consistent, coordinated, and sustainable strategy.
Mr. Freedman has served as an acting member on The Office of the National Coordinator for Health Information Technology (ONC) Federal Advisory Standards Committee Transport and Security Standards Workgroup. The workgroup is charged with making recommendations to the National Coordinator for Health IT on standards, implementation specifications, and certification criteria for the electronic exchange and use of health information Mr. Freedman has also worked with ONC on an in-depth security risk assessment of the DIRECT Certificate Discovery Tool (DCDT).
He has earned his Masters of Science in Information Systems through Strayer University and a Bachelor of Science in Communications from The University of Miami with a double-major in Speech Communications and History. With over 20 years working in IT and Information Assurance, Mr. Freedman has hands-on experience with both the public and private sector healthcare networks and systems: He has worked at one of South Carolina’s largest independent physicians practice, Palmetto Primary Care Physicians, as its CIO and Information Technology Director. In his role as CIO, he was responsible for the oversight of all operational and technology functions for 33 Primary Care Physician offices and Specialist clinics. He served as the HIPAA Compliance Officer and managed a team of IT specialists in support of electronic medical records and practice management systems.
Mr. Freedman was also the Technical Services Lead on US Navy Medicine Enterprise Services Operations Center project supporting a mix of 80 hospitals and clinics worldwide with over 55,000 users. At Benefitfocus, a leading insurance benefits technology firm, he managed the Infrastructure Services and Information Assurance Group, including help desk, system administration, networking, facilities, security and compliance. Mr. Freedman also served as the organization HIPAA Privacy and Security Compliance Officer developing all related policies and procedures.
He has co-authored a book on PCI Compliance and is the Technical Editor of a handbook on IT Regulatory and Standards Compliance. He holds some of the leading industry certifications from Microsoft and Cisco. He is also a CISSP, PMP, and is a Certified HIPAA Compliance Officer (CHCO). Mr. Freedman holds an active Department of Defense Secret security clearance.