William "Bill" Miaoulis is the founder of HIPAA Security and Privacy Advisors, LLC, (HSP Advisors) an independent consulting company that offers quality consulting services to the healthcare industry. Bill offers 20 years of Healthcare security services to his clients, in addition to having previously worked in the Energy and Banking Industries.
Bill was the original UAB Health Systems Information Security Officer; a post he held for almost 7 years. He was with Phoenix Health Systems as the Corporate Information Security Officer and HIPAA Consulting Service Leader for over 11 years, before forming HSP Advisors. Bill was a Manager of HIPAA Consulting with Science Application International Corporation (SAIC) for 18 months.
Bill has assisted numerous Healthcare Organizations with HIPAA/HITECH Security and Privacy, Disaster Recovery Planning, and Risk Analysis.
Bill is the author of the book "Preparing for a HIPAA Security Compliance Assessment" which was published by AHIMA. Bill has written extensively on Healthcare Security, presents at numerous healthcare and security conferences and has been quoted by numerous national publications.
Bill has also:
Coordinated the security effort at 10 healthcare facilities located throughout the United States whose IT is managed by Phoenix Health System. This includes assistance with risk analysis, risk management, technical vulnerability and penetration testing, controls review, policy development, security training, and HIPAA/HITECH Compliance.
Served as the Interim Information Security Officer for a 500 bed hospital. Within a nine month period, created and executed security plans to remediate numerous risks identified by 6 different external audit reports. Created and presented quarterly reporting to the Audit Committee of the Board of Trustees. Controls implemented included email, laptop and mobile media encryption, change control, network port security, access management and audit trail reviews. Efforts resulted in major financial benefit to Phoenix Health Systems.
Led HIPAA remediation activities for major healthcare organizations, including one of the 10 largest public health districts which included developing privacy and security policies and procedures, developing and delivering training to 8,000 workforce members, and developing and implementing a transaction compliance strategy. Supervised a staff of 10 people.
Performed numerous HIPAA security and privacy impact (Gap) analysis activities (remediation plans, budgets and planning documents) for numerous organizations.
Developed business continuity and IT disaster recovery plans for clients.
Developed and deployed security risk management projects for numerous complex organizations, including a seventeen hospital network.