Holly is an independent privacy and security consultant. For over ten years as a consultant, she has been recognized for helping small to large sized organizations understand and become compliant with privacy and security regulations and guidelines in an organized, ethical, and straightforward way. Holly has the innate ability to summarize laws, regulations, and complex concepts in simple terms. This is done so that employees at all levels in the organization are able to understand and apply requirements to their roles. She is a dependable and conscientious individual with exceptional customer service, time management, and communication skills.
Her diverse health care experience has been gained by working with hospitals, multi-specialty clinics, small provider offices, home health, hospice, nursing homes, assisted living facilities, government agencies, business associates, and regional extension centers. She has worked with the HIPAA privacy and security rules for over nineteen years. As a former Privacy Officer for a health care system, she gained valuable experience through developing and managing all privacy and security initiatives. This included overseeing incident investigations, including investigations by the Office for Civil Rights (OCR).
Other industries in which Holly has provided privacy and security consulting services include insurance, information technology, financial, legal/law firms, marketing, manufacturing, and innovation.
In addition, Holly has facilitated security risk analyses for over 100 covered entities, business associates, and other types of organizations. These security risk analyses have covered HIPAA security rule, NIST 800-53 r4, NIST Cybersecurity Framework (NIST CSF), and FISMA. She has also completed HIPAA privacy compliance assessments and breach notification rule assessments.
Holly utilizes her project management and organizational skills to develop customized privacy and security policies, procedures, forms, and education programs for organizations. She created comprehensive toolkits to streamline project work with clients. Services are provided to clients throughout the United States and internationally.
Active with HIPAA Collaborative of Wisconsin (HIPAA COW) since 2002, Holly is currently a Board Member (Past President) and on the Privacy and Healthcare IT networking groups. In 2011, she drafted a HIPAA Security Risk Analysis Toolkit and led a sub-group of HIPAA COW’s security networking group to enhance and make it available on the HIPAA COW website. Due to the success of this project and high interest for additional tools, this sub-group formed a Risk Management Networking (RMNG) group. Holly has been a co-chair of the RMNG since its inception.
At a national level, she was on several privacy and security networking groups with other regional extension centers for four years. These groups created resources to help organizations meet the privacy and security meaningful use requirements. She has spoken for several state and national conferences, webinars, and facilitated meaningful use security risk assessment boot camps.
Holly has a Master of Science in Health Services Administration, Bachelor of Arts in Psychology, Certificate in Ethnic Studies, and a Certificate in Project Management.
As your trusted compliance partner, Holly can help your organization save time and money. She is known as a privacy and security subject matter expert who explains requirements in a meaningful way, helps to prioritize organizational risks, effectively leads project teams, and provides excellent customer service.