It's been a year since we were hacked due to former CIO Bill Hudson being completely unrealistic and out of touch with hiring.
A CTO was brought in and a Chief Security Architect, they have been amazing. Knowledgeable, fair and easy to work with. They actually hire people with the right skills. Some of the former Integris health leaders have returned to stabilize the environment.
We have a new CIO, hoping he will continue to hire technologist and not repeat the pattern of hiring unqualified security people like Stacy Stika who then hired her unqualified friend from JMH as a director if IAM and Technical Risk who was asking a CEO to give her his work so she and Stacy could present to the Board of Directors.
https://www.linkedin.com/pulse/given-nist-csf-baseline-standard-how-we-all-doing-tim-holman/?trackingId=H7C6nYTLdqjLurjnNRzIQA%3D%3D
This Bill Hudson was paid $602,405 annually
and never improved anything. https://projects.propublica.org/nonprofits/organizations/731192764
We all learn on the job, however it's not ok to entrust the lives and privacy of people in the hands of those who live by delegation and don't have the same experience as peer organizations. Stacy has never implemented technology, written policies or standards.