Profiles search

Mark Beans

CISSP, CISM, CEH, Security+
United States
Details

Education: University of Hawaii at Manoa



Hillsborough Community College



California State Polytechnic University-Pomona

Experience: Responsible for driving all aspects of data related security, including developing a comprehensive information security management plan, risk assessment, incident management, disaster recovery, vulnerability management, and compliance.

Duties include…

• Development of enterprise information security management plan

• Enterprise-wide risk management

• Resolving IT security compliance issues

• Active member of the Incident Response Team

• Driving the SOC2 and PCI DSS engagements for nVoq

• Managing corporate information security training and phishing test campaigns

• Managing partner, customer and prospect security assessments

• Advising the executive team on information security issues

• Managing third party and vendor risk management (TPRM), assessments and reviews

2019 : Present

nVoq Incorporated

Director Information Security, Privacy & Compliance

The Healthcare division of nVoq provides medical SaaS/cloud-based voice recognition solutions that overlay virtually any EMR, EHR, PACS, RIS or other software in nearly any environment.

My responsibilities included managing, training and supporting nVoq reseller partners and their clinician customers on Speech Recognition technology and operation. Worked with doctors and other clinicians in providing Speech Recognition training on over 45 different EMR, PACS and RIS systems. Projects include interfaces to Natural Language Processing (NLP) engines for providing Computer Assisted Coding (CAC) and interfaces to Medical Transcription Service Organizations (MTSO).

Duties included…

• Training clinicians on Speech Recognition on over 45 different EMR, PACS & RIS systems

• Working with Natural Language Processing (NLP) & Computer Assisted Coding (CAC)

• Managing the training and on-boarding of new resellers

• Troubleshooting product in PC, Mac desktop, remote & virtual environments

• Manage and shadow initial customer pilot activity with new resellers

• Developing processes and procedures for training clinicians and resellers

• Identify and document additional product features and functionality

• Driving IT security compliance issues

• Serving as an active member of the Information Security Team

• Driving the SOC2 and PCI DSS engagements for nVoq

• Manage both the InfoSec training and Phishing test campaigns

2014 : 2019

nVoq, Inc.

Directory, Channel Programs & Service Delivery

My responsibilities included project management, planning, directing and training on new EMR system implementations, including many systems that required data conversions.

During 2012…

• Developed and directed a new implementation process for an EMR

• Was instrumental in bringing 150 new customers onto the latest version of that EMR

• Was instrumental in getting MANY of our customers to attest for Meaningful Use

• Built and managed many of the servers, computers and networks used by the company

• Managed the development of 10 new EMR / PMS data interfaces for wide deployment using HL7, Mirth and CCRs

These customers were from all across the United States and Puerto Rico and represented a wide variety of medical specialties and cultures.

2010 : 2013

MedicalAIS

EMR Implementation & Integration Manager

I started Medical Software Tools as an independent marketing company specializing in Electronic Medical Records (EMR) and Practice Management System (PMS) software in May of 2007. Having partnered with several Value Added Resellers (VARs), I worked as a project manager providing services to medical offices as a contractor. Built and managed all the servers, computers and networks used by the company. Much of this contract work was performed for MedicalAIS customers.

The web site showing some of these offerings can be seen at www.MedicalSoftwareTools.com.

2007 : 2013

Medical Software Tools

Owner / Network Engineer / Project Manager

As EDI Implementation Manager for Sage Software in Tampa, Florida, my staff was responsible for setting up the software for doctor’s offices and healthcare facilities to send insurance claims and other information electronically to clearinghouses and ultimately to insurance carriers and other parties.

While at Sage…

• Successfully managed a department of 50 people

• Appointed team leads for the various products serviced

• Coached troubled staff members to help them be productive

• Terminated staff that were not able to be productive

• Directed development of automation dramatically improving productivity & enabling the company to meet the federal NPI deadline

2006 : 2007

Sage, Healthcare Division

EDI Implementation Manager

Company: nVoq Incorporated

Years of Experience: 32

Spoken Language: Spanish

Skills Agile Methodologies, Analytic Problem Solving, Business Analysis, Business Continuity, Business Development, Certified Information Security Manager (CISM), Defining Requirements, EDI, EHR, Electronic Medical Record (EMR), EMR, Enterprise Architecture, Enterprise Software, Healthcare, Healthcare Consulting, Healthcare Information Technology, Healthcare Information Technology (HIT), Health Information Exchange, HIPAA, HIT, HITRUST, HL7, HL7 Standards, Industry standards, Information Technology, Integration, Leadership, Management, Medical Billing, Microsoft SQL Server, NIST, PMP, Practice Management, Project Management, SaaS, SDLC, Security Audits, Security Incident Response, Security Policy, Software as a Service (SaaS), Software Development, Software Documentation, Software Implementation, Software Project Management, Start-ups, Strategic Planning, Team Leadership, Training, U.S. Health Insurance Portability and Accountability Act (HIPAA), Windows Server
About Knowledgeable and experienced in all aspects of information security, privacy and compliance. Managed SOC2 and PCI DSS audits, as well as HIPAA and PIPEDA compliance efforts. Cut the direct costs and labor associated with compliance efforts 50% by eliminating an unnecessary compliance framework. Developed a risk-based security management plan reallocating those recovered resources into improving the overall cyber security footprint of the company. Substantially increased risk evaluation and management and applied those efforts to Incident Management, Disaster Recovery (DR) planning and the company’s Business Continuity Plan (BCP).



Designed, developed and managed the implementation and training processes for numerous Electronic Medical Record softwares (EMR/EHR), Practice Management (PM), Data Interface offerings and Speech Recognition and have worked on medical software training and implementations in 43 states and Puerto Rico. Successful implementations with over 45 EMRs, Medical Billing and other Medical software systems including Epic, NextGen, eClincalWorks, MEDITECH, Athenahealth, GE Centricity, Allscripts, McKesson and many more.



Very effective at interfacing with BOTH technical AND non-technical people. Hands-on management style with extensive experience in the following:



• Development of an enterprise information security management plan

• Enterprise-wide risk management

• Curriculum Development and Delivery

• General Healthcare Information Technology (HIT)

• Managing Information Security issues

• Electronic Data Interchange (EDI)

• IT security compliance issues

• Managing HIPAA Compliance

• Project Management

• Clinical workflow