🛡️ Case Study: Hardening 1,000+ Hospital Systems

📌 The Challenge

A large U.S. healthcare organization needed to assess and enforce cybersecurity policies across over 1,000 hospital systems. The lack of consistent configuration standards left critical infrastructure vulnerable to both internal misconfigurations and external threats.

⚙️ What I Did

• Led the development and rollout of a Baseline Build Validation framework aligned with CIS Benchmarks
• Reviewed GPOs across multiple domains and implemented hardening policies
• Facilitated policy alignment sessions with cross-functional engineering teams
• Automated audit-ready documentation and compliance verification processes

🎯 The Results

• Standardized system hardening across 1,000+ hospitals
• Reduced policy deviation rates and audit findings by over 40%
• Improved readiness for HIPAA and NIST 800-53-based assessments

🧰 Tools & Skills Used

CIS-CAT Pro, GPO, Active Directory, PowerShell, Excel Automation, Risk Register Documentation, Security Policy Engineering