2010 AMC Conference

Faculty

	William Barnett, PhD is Senior Manager of Life Sciences for Research Technologies at Indiana University, where he oversees the Center for Computational Cytomics and IU’s efforts to support basic and applied life sciences research. He is also the Director of Information Infrastructures for the Indiana Clinical and Translational Sciences Institute, where he oversees the development of the Indiana CTSI HUB (www.indianactsi.org), the web portal and virtual organization environment that supports health care research and accelerates the translation of research discoveries to improved health outcomes. As Director of the Advanced IT Core at the IU School of Medicine, he supports health care research programs, particularly those that have advanced technology needs, and as Associate Director of the Center for Applied Cybersecurity Research, he oversees HIPAA alignment for research systems and participates in applied healthcare IT security research. He earned his PhD in Archaeology from Boston University and has spent 20 years developing research IT solutions for natural history museums and life sciences research.
	Judith Beach, JD, PhD is Senior Vice President, Senior Associate General Counsel for Regulatory and Government Affairs, and the Global Chief Privacy Officer for Quintiles. Her responsibilities include providing legal counsel to Quintiles' employees and customers on all aspects of regulatory law, especially with respect to the FDA. As the Global Chief Privacy Officer and Chair of the Council on Data Protetion, Quintiles' global internal privacy board, she coordinates the monitoring of the company's policies and procedures for protection of personal data. Prior to this, she practiced law at two firms in Washington, DC; was a Fellow in Reproductive Endocrinology at the University of California-San Francisco; and was a clinical investigator at Walter Reed. She earned her law degree from Georgetown University Law Center and PhD in Physiology and Pharmacology from Duke University.
	Susan Blair is Chief Privacy Officer for the University of Florida. She worked in clinical health care and corporate environments for more than 25 years before moving to academia. Over the years, she completed graduate degrees in law, finance, and management; she also holds professional certifications for information privacy, corporate compliance and ethics, internal audit, and community mediation. In addition to her professional responsibilities, she volunteers as a Guardian Ad Litem for Florida’s Eighth District Court.
	Debbie Bucci is Manager of the Integration Services Center (ISC), Division of Enterprise and Custom Applications, Center for Information Technology, at the National Institutes of Health (NIH). The ISC is responsible for designing and implementing single sign-on and federated authentication across the agency. She was instrumental in designing and launching the NIH Login and NIH Federated Login services. Her team also leads NIH’s efforts in regard to the use of service oriented architecture at NIH. She has received a number of awards for her team’s ground-breaking efforts in regard to SSO and federated authentication. The NIH Federated Login service was selected in 2009 as one of the Top 10 Government Innovators by InformationWeek 500.
	Sharon Budman, MS ED is currently Director of HIPAA Privacy and Security serving as Interim Chief Privacy Officer for the University of Miami Miller School of Medicine/Uhealth System. She has worked at the University for over 20 years in various capacities in central administration. She has been involved with HIPAA since its inception and was instrumental in the establishment, development and implementation of the University's Office of HIPAA Privacy and Security. Prior to HIPAA, she held management positions at the Medical School in the Offices of Business Information Management Systems and Clinical Financial Services. She holds the following degrees from the University of Miami: MS ED in University Administration/Higher Education Leadership, BBA in Accounting, and a Certificate in Health Care Administration. She also is a Certified Information Privacy Professional.
	Ted Claypoole, JD is a member of the Intellectual Property Transaction Team for Womble Carlyle Sandridge and Rice. He works on privacy, data security, cloud computing and Internet issues for researchers and other clients. He is co-chair of the data privacy and security committee for the American Bar Association's Business Law section, and is on the advisory board for UNC-Charlotte's College of Computing and Informatics. He worked for Bank of America as technology and intellectual property counsel, and for CompuServe, Inc. as corporate counsel. He is a graduate of Duke University and the Ohio State University College of Law.
	Wendy Cohn, PhD is Associate Professor of Clinical Informatics in the Department of Public Health Sciences at the University of Virginia Health System. She has expertise in the evaluation of clinical informatics and e-health applications. Currently, she is developing a clinical and genomic tool for the assessment of health risks and provision of preventive and risk management recommendations for parents and families. This tool, Health Heritage, will be integrated into multiple EMRs and PHRs to enable the electronic collection of family healht history, utilize genomic risk information and provide clinical decision support.
	Michael Conlon, PhD is Associate CIO for IT Architecture, Interim Director of Biomedical Informatics in the University of Florida College of Medicine, Associate Director of the university’s Clinical and Translational Science Institute, and Principal Investigator for VIVO: Enabling National Networking of Scientists. His responsibilities include development of academic biomedical informatics, expansion and integration of research and clinical information resources as well as strategic planning for university information resources. He earned his PhD in Statistics from the University of Florida, undergraduate degrees in Mathematics and Economics from Bucknell University, and is the author of over 150 scholarly publications and presentations. His current interests include enterprise change and organizational issues in the adoption of information technology, large scale data systems integration and enterprise architecture.
	Leonard D’Avolio, PhD is an informatics researcher and the Associate Center Director for Biomedical Informatics for the Massachusetts Veterans Epidemiology Research and Information Center (MAVERIC). MAVERIC is a 100+ person scientific organization within the VA specializing in the conduct of multi-site clinical trials, epidemiology, biospecimen storage, and biomedical informatics. He is also faculty at the Harvard School of Medicine and affiliated with the Center for Surgery and Public Health at Brigham and Women’s Hospital. His research involves the use of information technologies such as natural language processing, data mining, and machine learning to enable secondary uses of clinical data.
	Gerald DeLoss, JD serves in an Of Counsel capacity with Krieg DeVault LLP and is a member of the firm’s Health Care Practice Group. He represents a variety of health care clients, organizations and associations. He brings over 15 years of experience to the firm, with prior experience in Minnesota and South Carolina. He has authored numerous articles on a wide variety of health care issues, including technology, medical records, HIPAA and licensure. He is the current Chair of the American Health Lawyers Association’s Health Information and Technology Practice Group. He received his undergraduate and law degrees from the University of North Dakota.
	Leslie Derr, PhD is Director of Community Alliances and Support for the National Cancer Institute Center for Biomedical Informatics and Information Technology (NCI CBIIT), and program manager for the NCI Cancer Biomedical Informatics Grid® (caBIG®). caBIG, a major initiative of the NCI, is creating a virtual web of interconnected data, services, individuals, and organizations; that is redefining how research is conducted, care is provided, and patients and participants interact with the biomedical research enterprise. She received her PhD in Genetics from Duke University and spent a number of years as Principal Investigator in the National Institute of Allergy and Infectious Diseases of the National Institutes of Health.
	James DiDonato, MBA-MIS, CIA, CISSP is Information Security Officer for Baystate Health, Inc. His primary responsibilities include maintenance and enhancement of the health system's information security program. He has been employed in healthcare for 18 years, moving from internal audit to information services about nine years ago. In 2000, he assumed primary responsibility for getting Baystate's HIPAA efforts off the ground, and at various times he was the project manager for both the Privacy and Security projects. He is the former chair of the New England HIPAA Workgroup, a WEDI/SNIP regional collaborative, and a member of the Massachusetts Health Data Consortium's Security Officer Forum.
	Mike Dockery, CISSP, CISA is Information Security Officer for the Cincinnati Insurance Companies (CIC). His department is responsible for information security compliance and insurance cyber loss control support. Prior to joining CIC, he was managing partner of a litigation support company, Dockery Associates LLC. He has 30 years of experience in the security industry: 14 years providing security support to defense contractors involved in sensitive military programs and 19 years with the Defense Department. He is a member of the National Society of Professional Insurance Investigators and has over 15 years of experience in insurance investigation.
	John “Sean” Doyle, JD, MAPP is Senior Counsel for Laboratory Corporation of America Holdings where he focuses on data and connectivity agreements. He has prosecuted cases for the Army, advised the Speaker of a state legislature, secured asylum for torture victims, negotiated thousands of disputes, lobbied for stronger child protection laws, and litigated matters in a large firm. He is also a consulting psychologist (www.RainStickConsulting.com), having published and done his specific research in the areas of attorney engagement, organizational thriving and individual well-being. He has a chapter in the new book Resilience: How to Navigate Life's Curve. He earned his law degree from Loyola School of Law in New Orleans, and his Masters in Applied Positive Psychology from the University of Pennsylvania.
	Colleen Ebel, MBA, CISSP is the Chief of Information Security at the University of Florida (UF) Health Science Center. She oversees the implementation of the information security policies and standards across 45 independent IT operations in six UF health-related colleges, five major UF research institutes and centers, four clinics and two faculty group practices. Prior to this, she was the HIPAA Coordinator for the University of Michigan Health System Medical Center Information Technology Division, Director of IT Support Operations for Borders Group Inc., and Account Manager for Electronic Data Systems. She earned her MBA from the University of Michigan.
	Randy Feldman, MS is the Director of Enterprise Mobile Solutions Technology for InfoLogix, where he supports the design, development and implementation of mobile applications and systems for over 1,400 hospital clients and over 800 enterprise clients. Previously he served as CIO and IT Director of ECRI, a not-for profit international provider of healthcare information and related technologies. He designed and implemented the infrastructure of the National Guidelines Clearinghouse (www.guidelines.gov), a public resource for evidence-based clinical practice guidelines in collaboration with the NIH and FDA. He earned his Master of Engineering in Industrial Engineering from Penn State University.
	David Fenstermacher, PhD is Chair and Executive Director of the Department of Biomedical Informatics at the H. Lee Moffitt Cancer Center and Research Institute. During his tenure in biomedical informatics, he has designed and directed the implementation of several bioinformatics distributed computing systems to support basic and clinical research, including multiple institution research projects. Data management systems designed by him have included: collection and integration of subject clinical data; data quality methodologies, development of web-based forms for input, storage and retrieval of all clinical and research data, customized data representations, and data sharing using data warehouse and Grid technologies. Current research focuses on developing informatics resources specifically for comparative effectiveness research. He received his doctoral degree from UNC-Chapel Hill and has held several faculty positions at UNC, the University of Pennsylvania and the University of South Florida.
	Reed D. Gelzer, MD, MPH, CHCC is co-founder of Advocates for Documentation Integrity and Compliance, an education and consulting resource that recently published How to Evaluate Electronic Health Record Systems. He’s also the Senior Physician Informaticist for Buccaneer Computer Systems and Services and on staff for Provider Resources, Inc. supporting CMS’s Meaningful Use process. Other clients have included the Defense Centers of Excellence, the U.S. Navy Health Care Data Quality Office and the CMS Physician Quality Reporting Initiative. He chaired a Fraud Management project workgroup for the ONC,and served on HL7’s EHR Records Management-Evidentiary Support Profile Working Group. He received his medical degree from Wayne State University and Masters in Public Health from the University of Michigan.
	Aviva Halpert, MA, RHIA, CHPS is the Chief HIPAA Officer at Mount Sinai Medical Center in New York where she created and directs the HIPAA privacy program and currently directs the HIPAA security program, including the Identity Theft Program. She has over 25 years of experience in health information management (HIM), and is a frequent speaker and author on both HIPAA and HIM topics. During her career, she also served as Privacy and Compliance Officer, Director of Clinical Information Resources, and Director of Special Projects at Mount Sinai. She holds a MA in English Literature, is a registered Health Information Administrator (RHIA) and certified in Healthcare Privacy and Security (CHPS).
	Joy Hardee, RHIA, CHPS, CHRC, CPHQ is a Privacy Officer & Research Compliance Official for University Health Systems of Eastern Carolina (UHSEC). She has worked in the Office of Audit and Compliance since 1999 and has 26 years of experience in healthcare with UHSEC. She earned her RHIA, CHPS, CHRC and CPHQ certifications through AHIMA and HCCA.
	John Hart is the Chief Audit and Compliance Officer for UNC Health Care System, where he oversees the overall audit, privacy, information security and compliance matters. He brings more than 25 years of audit experience to this role, with the primary focus of his experience in healthcare. In 15 years at North Carolina Baptist Hospital he led the Internal Audit function, oversaw the development of the Compliance program, and co-chaired the Operating Committee for the implementation of HIPAA requirements. In 2005 he began reviewing and evaluating these programs in the UNC Health Care System, evaluating the ethical culture, reviewing the processes for monitoring functions, measuring the effectiveness, and meeting standards for audit and compliance programs. His education includes an undergraduate and a graduate degree from UNC-Chapel Hill, and he is a licensed CPA in the State of North Carolina.
	Clyde Hewitt, MS is Principal Consultant for the Security Advisory Services at Forsythe Solutions Group. He is responsible for providing security management consulting and ISO 27001 compliance services to Forsythe’s customers and serves as a subject matter expert in eDiscovery, healthcare compliance and security compliance. He has 20+ years of IT and security managerial experience in implementing large scale information systems, including ERP/MRP, logistical, decision support, health informatics, and command and control in both the government and private sectors. He earned his MS in Operations Management from the University of Arkansas. He serves on the NCHICA Board of Directors where he is co-chair of the Education Committee.
	Angel Hoffman, MSN is Co-Founder and Managing Director of AP Health Care Compliance Group, which provides compliance advisory services to health care organizations. She has over 30 years of experience in healthcare, including over ten years in healthcare compliance and risk management. She served as Chief Compliance and Ethics Officer for MED3000 and as Director of Compliance and Director of the HIPAA Program Office at the University of Pittsburgh Medical Center. She began her career in nursing and earned her MSN with a concentration in Health Care Management from La Roche College.
	Sissy Holloman, JD is Senior Counsel at Laboratory Corporation of America Holdings. Previously, she was Assistant General Counsel for UNC Hospitals and in private practice. She currently serves on the Health Law Section Council of the NC Bar Association. She served as Chair of the Contracts Subworkgroup of NCHICA's Privacy and Confidentiality Focus Group and as Chair of the Business Associate Task Force. She received her law degree from UNC-Chapel Hill and her undergraduate degree from Davidson College.
	Zachariah (Zach) Johnson is Director of the Department of Application Services at the Moffitt Cancer Center. His responsibilities include the acquisition, development, implementation and support of all enterprise systems at the Center. He previously managed the Clinical Information Systems at Moffitt and directed the Lab Information Systems for the NSLIJ Health System in Long Island. Over the years he has designed, developed and implemented systems for over 80 health systems across the United States, Canada and Europe with an emphasis on process optimization and development or alignment of technologies with the business needs of consumers.
	Torie Jones, JD is the Chief Privacy Officer for the University of Pennsylvania Health System, where she is responsible for oversight and management of the privacy program. Professionally, her focus has been on privacy and compliance in several environments, including academic medical centers and Medicare/Medicaid programs. She received her BA from Howard University and JD from Tulane Law School.
	Patricia King, JD is Associate General Counsel for Swedish Covenant Hospital in Chicago. She has practiced health law for over 30 years, including positions as Vice President for Legal Affairs and General Counsel for Rockford Health System and Associate General Counsel for Northwestern Memorial Hospital. She has extensive experience in HIPAA Privacy and Security compliance, information technology licensing, managed care, tax issues of exempt organizations, tax-exempt financing, and nonprofit organizational issues. She is a graduate of the University of Wisconsin-Madison, the University of Wisconsin Law School, and the University of Chicago Booth School of Business. She is a member of the American Health Lawyers Association, the Illinois Association of Healthcare Attorneys, HIMSS and HFMA.
	David Kirby, MS provides consulting in information security and privacy and emerging IT as part of Kirby Information Management Consulting LLC. He has spent over 30 years in various roles developing innovative uses of health information technology with a variety of public, private, state, national and international organizations. These roles have included being an academic medical center (AMC) information security officer, a director of an AMC-based telehealth program, director of an IT innovation center in an AMC, a manager of technology support for an AMC, commercial IT product developer and manager, and a juror for the Certification Commission for Health Information Technology. He has authored a commercial security toolkit for small medical practices and presents regularly at healthcare and IT industry conferences.
	Linda Malek, JD is a partner at Moses & Singer LLP and chair of the firm’s Healthcare and Privacy practices. Her practice focuses on transactions, technology, and regulatory matters in the healthcare industry. She also assists clients on compliance issues related to federal, state and international privacy laws, such as HIPAA, and counsels payors, providers and pharmaceutical companies on a variety of regulatory compliance issues that include clinical research compliance and fraud and abuse under federal and state laws. She earned her law degree from the University of Virginia School of Law.
	Trish Markus, JD is a partner with Smith Moore Leatherwood LLP, where she handles health care regulatory compliance and patient care matters for physicians, hospitals, and other health care providers. She advises North Carolina’s oldest regional health information organization on HIPAA privacy and security issues, and she served as the co-chair of the Legal Work Group for the North Carolina Health Information Security and Privacy Collaboration (HISPC) Project. She currently serves as the Treasurer of the NC Bar Association's Health Law Section and, since 2008, she has served as a Vice Chair of the American Health Lawyers Association’s Health Information and Technology Practice Group. She graduated from Haverford College with honors in English and from Boston College Law School.
	Wayne Martin, MS has 35 years of experience in the healthcare industry, with 20 years in computer technology. His research activities focus on the relationship, if any, between strategic information systems planning, the unified theory of acceptance and use of technology, and the potential of information technology in the healthcare industry. He is also interested in the relationship of organizational culture, relationships, and dynamics in creating agile and flexible IT security processes to align with and support business objectives. He earned his MS in Computer Information Systems from the University of Phoenix.
	Susan McAndrew, JD is the Deputy Director for Health Information Privacy (HIP), Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services. As Deputy Director, she has responsibility for implementing and enforcing the HIPAA Privacy Rule. In July 2009, the Secretary delegated to OCR authority for the HIPAA Security Rule, thereby consolidating in HIP Division responsibility for policy and enforcement of both the HIPAA Privacy and Security Rules. In addition, the HIP Division leads enforcement of the Patient Safety and Quality Improvement Act. Her work experience includes over 20 years with the federal government and 15 years practicing law. She received her JD from Georgetown University Law Center.
	Mac McMillan, MA is co-founder and CEO of CynergisTek, Inc., a firm specializing in the areas of information security, regulatory compliance and IT audit. He brings nearly 30 years of combined intelligence, security countermeasures and consulting experience. His philosophy for security is grounded in appropriate solutions, business purpose and knowledge, and common sense application of technology controls. He has worked in the healthcare industry since his retirement from the federal government in 2000 and has contributed to HCCA, AHIA, AHIMA and HIMSS. He currently serves as Chair of the HIMSS Information Systems Security Working Group. He holds a MA in National Security and Strategic Studies from the US Naval War College.
	Marie Moseley, BSN, NNP-C, MPH, JD is Regulatory Affairs Specialist/Privacy Officer for University Health Systems of Eastern Carolina. As an accomplished health lawyer and certified nurse practitioner, she has more than 25 years of professional experience in the health care setting. Having concentrated her practice in the areas of hospital and health law she is particularly well-known for her expertise in the regulatory aspects of health law, including HIPAA and corporate compliance. She previously served as in-house counsel after having spent five years in private practice defending physicians, hospitals and other healthcare providers in medical malpractice claims and other health law related issues.
	Lawrence H. Muhlbaier, PhD is Associate Professor of Biostatistics, Department of Biostatistics and Bioinformatics, and Associate Professor, Department of Surgery, at Duke University Medical Center. He is a faculty statistician with the Duke Clinical Research Institute and part of the Duke Outcomes Research and Assessment Group. He is a member of the Duke University Health System (DUHS) Institutional Review Board and research advisor to the DUHS HIPAA Privacy Officer. He has written HIPAA Training Handbook for Researchers: HIPAA and Clinical Trials published by HCPro (www.hcmarketplace.com) and a chapter on HIPAA in Bankert & Amdur's IRB Management & Function. He participated in the PRIM&R Tissue Working Group to write a comprehensive paper to address Tissue Repositories and the database issues that accompany them.
	Lee Olson, CISSP, CISM is the Information Security Officer for the Mayo Clinic in Rochester, MN, with governance responsibility extending to the Mayo Health System and Mayo group practices in Jacksonville, FL and Scottsdale, AZ. He has over 25 years of experience in the information security field. He attended the University of Minnesota and previously worked for the DoD Defense Investigative Service as an industrial security specialist and regional computer security specialist. He co-authored the article Security and Confidentiality in an Electronic Medical Record which won the HIMSS Article of the Year award in 1999.
	John Parmigiani, MS is the President of John C. Parmigiani & Associates, LLC. His primary focus is on helping organizations become compliant with healthcare regulations, in particular HIPAA and HITECH, and move toward e-health. He has over 35 years of experience in information systems management in both the public and private sectors. He served as chairman of the team that created the Security Rule and was a member of the federal committee that oversaw the development and implementation of the HIPAA Transactions & Code Sets and Privacy Rules. He earned an MS in Management Science and Operations Research from George Washington University and a BES in Industrial Engineering and Operations Research from Johns Hopkins University.
	Morgan Passiment is Director of Information Resources Outreach for the Association of American Medical Colleges (AAMC), where she develops resources and cultivates opportunities for information leaders to improve and enhance the academic healthcare environment through strategic use of information tools. Her primary emphasis has been on the management of information, strategic planning, health policy and organizational effectiveness. She has directed a wide variety of successful leadership programs and work groups that provide academic health centers with resources to meet the challenges of a diverse healthcare environment and sometimes conflicting needs of medical education, research, patient care and administration.
	Phyllis Patrick, MBA, FACHE, CHC is Co-Founder and Managing Director of the AP Health Care Compliance Group, a consulting group that provides compliance advisory services to health care organizations. She has worked in compliance, privacy, and information security at two academic medical centers in New York. Most recently, she was Compliance and Privacy Officer for Greenwich Hospital, an affiliate of the Yale New Haven Health System. She is Board certified in health care administration and compliance. She is a member of the Board of Examiners for the Baldrige National Quality Award Program and a member of the HCCA Editorial Board on compliance auditing and monitoring. She received her MBA from Cornell University.
	Fabian Perez, MS, CISA, CISSP is an Information Security Analyst at the University of Florida (UF) Health Science Center. He leads the implementation of an Information Security Risk Management Program for High-Risk Data Operations. The main goal of the program is to embrace heterogeneous technology operations (research, clinical operations, academia, contractual services, etc.) under the custody of the UF and mitigate the most tangible risks. Previously, he worked as an Information Security Consultant in Ecuador for government and private companies, was professor at his home country university, and has experience with the oil field business. He earned a MS in Electrical and Computer Engineering from Purdue University.
	Joan Podleski is Director of the Institutional Ethics & Compliance Program at Duke University. She is responsible for building a compliance structure that coordinates compliance risks across the entire academic enterprise, supports an institutional culture of compliance, and ensures appropriate compliance programs and plans are in place for the over 400 regulatory issues that apply to the institution. She has been involved in academic management for over 20 years, with the majority of her tenure at Washington University in St. Louis where she served as the HIPAA Privacy Officer, co-chaired the Compliance Workgroup and served on the Compliance Advisory Committee.
	Eugene Rich, MD, FACP is a Senior Fellow at Mathematica Policy Research, where he is establishing a new center related to the policy and practical implementation of "Comparative Effectiveness Research." His research explores the influence of the training and practice environment on health professional decision-making with a particular focus on practice variation in general medical care. He is the author of over 100 publications in this area. He has substantive experience with administration and finance of research and clinical programs, including ten years as Chair of Medicine at Creighton University. In 2009 he was a Scholar in Residence at the Association of American Medical Colleges where he focused on science and science policy issues relevant to health care reform, including comparative effectiveness research. He remains a Clinical Professor of Medicine at Creighton University School of Medicine.
	Brian Rothman, MD is an Assistant Professor of Anethesiology and Associate Director of Perioperative Informatics at Vanderbilt University Medical Center. He received his medical degree from the University of Cincinnati and completed his residency training at the Johns Hopkins Hospital. He currently serves on the Committee for Electronic Media and Information Technology for the American Society of Anesthesiologists and is a member of the Board of Directors for the American Association of Clinical Directors. His research in mobile perioperative information management systems recently received both the Innovation and Clinical Application of Technology Awards at the 2010 annual meeting of the Society for Technology in Anesthesia.
	Kevin Savoy, MBA, CPA, CISA, CISSP is Director of Information Technology Audits for the University of Virginia. He has over 20 years of experience in IT operations and audit in government and private industry. Previously, he was IT Security Audit Director for the Auditor of Public Accounts for the Commonwealth of Virginia. He also spent ten years automating retail and hospital pharmacies for two major pharmaceutical wholesalers. He is a frequent speaker on a variety of IT security and audit topics to professional organizations.
	Dennis Schmidt, MS, CISSP is Director of the Office of Information Systems at the UNC School of Medicine. He also serves as the school's HIPAA Security Officer. Prior to joining UNC in 1997, he worked for SAIC as the Technical Director for a systems support team at Fort Bragg, NC. He also served as the ADP chief for Joint Special Operations Command at Fort Bragg. He is a retired naval officer with 24 years of service as a pilot of the P-3C Orion antisubmarine warfare aircraft. He holds an MS in Computer Science from the Naval Postgraduate School and is a Certified Information Systems Security Professional.
	Ganesh Shankar, MS is the Manager of the Advanced IT Core at the Indiana University School of Medicine. In this role, he aligns the efforts of the Research Technologies Division with the increasingly advanced computational needs of researchers at the IU School of Medicine. In addition, he is also the caBIG Deployment Lead for the Indiana University Simon Cancer Center and has helped to promote the utilization of standards-based, interoperable computing infrastructure such that data integration and collaborative research can occur in meaningful ways. He earned his first Master’s degree in Biological Sciences from Carnegie Mellon University, and the second in Bioinformatics from SUNY, Buffalo. He has designed and implemented scientific and bioinformatics software for over ten years.
	Colleen Shannon, JD is the Chief Compliance and Privacy Officer at Duke University Health System, where she is responsible for implementing and overseeing the compliance and privacy programs. Prior to joining Duke, she was the Chief Compliance and Privacy Officer for OhioHealth, an integrated multi-hospital health system in Columbus, Ohio. She has 20 years of health care regulatory experience, including developing the privacy program for Cole Managed Vision and serving as staff counsel for the Cleveland Clinic Foundation. She is a licensed attorney.
	Raymond Shelton is the Information Security Officer at Continuum Health Partners, Inc. His responsibilities include the IT security, audit and compliance programs for Beth Israel Medical Center’s Petrie, Kings Highway Divisions, St. Luke’s Roosevelt Hospital, Long Island College Hospital and New York Eye and Ear Infirmary. He also held the position of Manager of IT Security at Continuum. Prior to this position, he was with University of Missouri Health Care, beginning in the Department of Family and Community Medicine, and ultimately concluding his tenure as a Network Engineer with a focus on security.
	Michael Slack, MS, CISSP, GCIA, CNDA is the Enterprise Storage Manager in the Information Technology Department of the Duke Clinical Research Institute, where he is responsible for all storage-related architecture and operations. Hel also serves as an officer with the US Army Reserve where he is a Major and Team Chief with the National Capital Region Information Operations Center in Washington, DC. He holds an MS in Information Assurance, as well as security and privacy professional certifications, including: Certified Information Systems Security Professional (CISSP), GIAC Certified Intrusion Analyst (GCIA), and Certified Network Defense Architect (CNDA).
	Tremayne Smith, MS, CISSP is the Information Security Officer for the Ohio State University Medical Center and the HIPAA Security Officer for the OSUMC Health System. He is responsible for establishing and enhancing the information security program at OSUMC which includes information security policy development, regulatory compliance, risk management, awareness and education, identity and access management, information security incident management, disaster recovery and business continuity and malicious software protection. He is a Certified Information Systems Security Professional (CISSP) and he earned his MS in Administration in Information Resource Management from Central Michigan University and BS in Computer Science from the University of Michigan.
	John Speakman is Associate Director for Clinical Products and Programs within the Center for Biomedical Informatics and Information Technology at the U.S. National Cancer Institute (NCI), where he leads informatics initiatives in support of clinical research within the cancer Biomedical Informatics Grid program. Before joining NCI, he worked for Memorial Sloan-Kettering Cancer Center and St. Thomas’s Hospital in London. He also chairs the Regulated Clinical Research Information Management workgroup of the Health Level Seven standards development organization, charged with developing international data standards for biomedical research. His personal focus area is maximizing the contribution of information technology to the reengineering of the biomedical research process, especially through exploring the seamless incorporation of sources of clinical and biological data.
	Rebecca Williams, RN, JD is a partner in the law firm of Davis Wright Tremaine LLP where she is co-chair of the Health Information Technology/HIPAA Practice Group. Her practice concentrates on health information privacy, security and confidentiality and corporate and regulatory compliance. She has been named one of the "Best Lawyers in America" in health law by Woodward/White, and serves as Vice Chair of the American Health Lawyers Association's Health Information and Technology Practice Group. She is also a registered nurse with hands-on experience in hospital and other health care environments.
	Mike Wojcik, MBA is a Risk and Compliance Manager at Acumen Solutions. He has managed and led large information assurance programs and performed security assessments for a variety of both private and public sector clients. Specializing in SaaS security for the past two years, he led the first successful effort to shepherd a large public cloud vendor through the federal certification and accreditation process. He previously served as Deputy Director for Information Assurance for the Military Health Service, where he was responsible for security for the DoD's AHLTA EHR. He earned his BS in Electrical Engineering from George Washington University, MS in Systems Engineering and MBA from George Mason University.