Core engineering projects delivered as sole IT and security owner for a HIPAA-regulated, 6-site diagnostic imaging organization — 83 users, 39 endpoints, Microsoft 365 Business Premium. No team, no escalation path.
Scope: Full security program designed and operationalized across Identity, Endpoint, Data Protection, Monitoring, and Network domains from ~zero baseline.
Impact: Secure Score ~40% → >96%; HIPAA/HITECH Compliance Manager ~80%+; 14 governance documents authored; Beazley cyber insurance application completed end-to-end.
Deliverables:
Scope: Completed full Beazley application (F00863 042023 ed.) — Q1–Q24 — gathering technical evidence per question and satisfying all cybersecurity control requirements with documented production controls.
Impact: Insurance application fully evidenced and submitted; compensating controls formally closed; audit-defensible documentation package produced.
Key controls satisfied: