This Tiger Team will focus on: 

Identifying scalable solutions for security authorization and authentication processes.


Tiger Team Deliverables

  • Identifying current industry status security authorization and authentication processes and tools in current clinical interoperability and in advanced digital API use. 

  • Building a proof of concept that demonstrates the critical architectural and technical capabilities required to implement user authorization and authentication at point of request and the ability to administer granting and maintaining credentials at scale in multi-stakeholder environments.

  • Creating appropriate national standards and documentation for securing resources and data used in the exchange model. 


Skills and Experience

Members for this Tiger Team  should demonstrate: 

  • Understanding of security credentials and certifications (CISSP, GSEC).

  • Experience with enterprise level security design and implementation.

  • Enterprise experience in access control models and implementations.

  • Enterprise experience in rights and consent management.

  • Understanding of security implementations such as audit logs, detecting and adverting attacks, source code control scanning, OAuth, certificate management, encryption, and API keys.


Anticipated Timeline

April 2018 – March 2020


Security Tiger Team Members

ROLENAMECONTACT
Tiger Team LeadRose-Marie Nsahlairose-marie.nsahlai@hhs.gov
ONC Support StaffAli Massihiali.massihi@hhs.gov
Co-LeadLuis C. Maas III, M.D., Ph.D.lcmaas@emrdirect.com
Co-LeadBrett Stringhambrett.stringham@optum.com
MemberAaron Seibaaron.seib@onyxhealth.io
MemberKathleen Connorkathleen_connor@comcast.net
MemberDavid Kibbedavid.kibbe@thekibbegroup.com



Past Members


Debbie Bucci

Kevin Littlefieldklittlefield@mitre.org

Mitchell Greenfieldmgreenfield@humana.com
  • No labels