Gerald's career path has led through the Information Management and IT security realms, managing networks, servers, databases and PCs for the city of Salmon Arm BC prior to moving into healthcare in 1999. At the North Okanagan Health Region, he took on the information security responsibilities in 2001 and continued on as Information Security Coordinator when Interior Health was formed.
In 2004, he moved into the position of Information Privacy & Security Officer, adding Privacy to his list of responsibilities. In this management role he had responsibility for the release of corporate information, auditing of access to electronic health records, development and implementation of security policies and ensuring systems were in compliance with Interior Health policy and provincial privacy related legislation. He provided input and expertise to several provincial groups including the Information Privacy and Security Working Group and the Bill 73 Compliance Task Group.
After a one year sabbatical during which he traveled internationally with his family and engaged in several volunteer activities, he returned to the industry as the Chief Privacy & Security Officer for the Rural Shared Health Information Program (RSHIP) in Alberta. RSHIP was formed to implement a common electronic health record within the 7 non-metro Health Regions in Alberta. In this unique role, Gerald led a team of Privacy and Security representatives to develop common Privacy and Security strategies, ensuring that proposed strategies were aligned with the current business model and were compliant with legal requirements. He acted as advisor to the Health Regions and was a liaison between the Office of the Information and Privacy Commissioner and the Health Regions on matters that affected information systems held by RSHIP. Gerald also led a team of Security Officers and Consultants to develop a set of Security Policies based on ISO 17799 which were to be adopted by the 7 Health Regions.
In early 2008, Gerald moved into a consulting role and has since held contracts in BC, Yukon, Alberta and Ontario. His client list includes all the Health Authorities in BC as well as the BC Ministry of Health, several departments within the Yukon Government, the Alberta Cancer Board and the Community Care Information Management Program within eHealth Ontario. His First Nation / Inuit experience includes conducting Security Assessments on the TeleOphthalmology and EMR projects for the Inter Tribal Health Authority in BC, and conducting the Logical PIA on the First Nation Panorama Deployment in Ontario for the Chiefs of Ontario. The majority of the contracts held involve the assessment of information systems to ensure that the collection, use, storage and disclosure of personal health information is in compliance with organizational policies, legislation and best practice. More recently he has moved into the field of Data Governance, leading the development of Data Government Frameworks for the Public Health Reporting Data Warehouse, the provincial Panorama system, a repository of clinical information shared for secondary purposes across multiple organizations, and a subset of data held in Healthideas, the Ministry of Health's data warehouse.
Gerald received his CISSP certification in 2004 and CIPP/C certification in 2008. He is able to offer a blend of Privacy, Security and Data Governance expertise that has been developed from a range of projects within several provinces. That expertise includes an understanding of healthcare solutions and applicable legislation and is built on a knowledge base of systems and networks.
For more information, contact Gerald