Slide 1

Slide 7

Slide 2

Slide 2

Example Frame



Experience
& Qualifications




More sedoraonline.com!




PRIVACY & SECURITY PROGRAM DEVELOPMENT

iSecurity Consulting has developed an innovative methodology to assist organizations develop and enhance their privacy, security and architecture programs – the Balanced Approach.

The Balanced Approach was adapted by iSecurity from business strategy disciplines defined by Balanced Scored Cards. It takes into consideration business goals, governance, internal processes, client services and resource requirements when developing or reviewing an information security, privacy or architecture program.

SOCAN

The Society of Composers, Authors and Music Publishers of Canada (SOCAN) has engaged iSecurity to develop its information security strategy, policy governance and processes.

CANCER CARE ONTARIO

iSecurity Consulting has provided CCO with strategic planning, risk management, architecture and governance framework definition services through the following engagements:

  • Information security program development & planning
  • Privacy program review & strategic planning
  • Policy framework definition
  • Information security program evaluation & benchmarking – health check assessment
  • Incident response framework & process review

MINISTRY OF HEALTH & LONG-TERM CARE

Developed through several engagements:


  • Privacy & security toolkit for continuing care sector
  • Information security policy framework for the Continuing Care eHealth program

TRILLIUM HEALTH CENTRE

Developed policy framework and information security policy, standard and procedures.

PEEL SENIOR LINK / CENTRAL WEST CCAC / MISSISSAUGA-HALTON LINH

Developed privacy policy and protocols for the operation of the CSP Portal by the Central West CCAC in the capacity of a Health Information Network Provider.

RISK MANAGEMENT, PRIVACY & SECURITY ASSESSMENTS

iSecurity Consulting has great expertise conducting Privacy Impact Assessments (PIA) Threat Risk Assessments (TRA) and technical Vulnerability Assessments (VA). iSecurity Consulting has also expertise developing and implementing enterprise wide risk management frameworks. A sample of specific engagements is provided below.

LAWSON HEALTH RESEARCH INSTITUTE

The Lawson Health Research Institute (Lawson), as the research institute for London Health Sciences Centre (LHSC) and Saint Joseph's Health Centre, London (SJHC) is one of the largest hospital based researcher institutes in Canada.

Lawson is conducting a research study (Mental Health Engagement Network: Connecting clients with their care providers (MHEN study)) that employed the TELUS Health SpaceTM (THS) platform, a consumer health platform that supports a personalized Personal Health Record (PHR) application.

iSecurity was commissioned by Lawson to conduct a TRA and PIA for the MHEN study and PHR application.

LONDON HEALTH SCIENCE CENTRE (LHSC) AND ST. JOSEPH'S HEALTH CENTRE

London Health Sciences Centre (LHSC) and St. Joseph's Healthcare Centre London (St. Joseph's) are implementing a Computerized Provider Order Entry (CPOE) for their shared Regional EPR system.

iSecurity was selected to perform a Threat Risk Assessment of LHSC/St. Joseph's EPR system and CPOE initiative.

CONSOLIDATED HEALTH INFORMATION SYSTEM (CHIS)

Consolidated Health Information System in its role as a Health Information Network Provider in the Eire-St Clair LHIN has engaged iSecurity to conduct a TRA and PIA of its hosting services of the Integrated Assessment application and subsequent Integrated Assessment Record (IAR) and Enterprise Master Patient Index systems. The current IAR solution is being used by health information custodians' at Eire-St Clair LHIN to share patient's mental health assessments (i.e. RAI-MH).

CONTINUING CARE SECTOR TRA & PIA

Conducted TRA and PIA assessments for key Continuing Care initiatives such as eReferrals, Community Mental Health MIS systems, Community Mental Health Common Assessment tools, and regional data centre.

PEEL SENIOR LINK / CENTRAL WEST CCAC / MISSISSAUGA-HALTON LINH

Performed PHIPA statutory gap analysis for Health Information Network Provider, PIA, TRA, and technical VA for the Community Service Provider (CSP) Portal. The CSP Portal will allow community care service provider in the Mississauga-Halton and Central West Local Heath Information Networks (LHIN).

MOHLTC PROVINCIAL REGISTRIES

Led and managed the Threat Risk Assessments of provincial registries and eHealth applications including: Portal, Client, Provider & Diabetes registries, and Health Information Access Layer Infrastructure. These initiatives involved multi-hundred million dollars projects by the Ministry of Health and Long-Term Care.

TRILLIUM HEALTH CENTRE

iSecurity was commissioned by Trillium Health Centre to conduct several TRAs and PIAs including of its Rapid Electronic Access to Clinical Health Information Systems (REACH), iCare Portal and University Health Network's LHIN Exchange Access Portal (LEAP), and Community Services Providers (CSP) Portal projects. We assessed information security risks to THC when it comes to the sharing of THC patient's clinical data to partner health care organizations and the hosting and operations of the clinical systems in THC's data centre.

ENTERPRISE SECURITY ARCHITECTURE, ACQUISITION & IMPLEMENTATIONS

iSecurity Consulting has created and designed the security architecture for multi-million dollars initiatives.

CANCER CARE ONTARIO

  • Designed and managed the Implementation of an Enterprise logging, monitoring and auditing solution – Security Information and Event Management (SIEM) solution.
  • Developed the security architecture for e-Referral's provincial reference model.

MOHLTC PROVINCIAL REGISTRIES

  • Developed the security & privacy architecture for the provincial Provider & Client registries.

Back to Our Services