I am a vCISO operating out of the Boston, MA area.  I have extensive experience working with healthcare and technology companies wrap security and operations around their existing processes to help make a company more secure and compliant.

A few caveats to the above, first I work primarily with cloud environments. Second while I have worked extensively with HIPAA and healthcare I am not a lawyer so my recommendations are based on NIST and past experience.