Andrew Holm-Hansen

SQOO Project ()

April 2019 – May 2022
Participated in eCW Corporate Integrity Agreement (CIA) as a member of the Software Quality Oversight Organization (SQOO) responsible for advising eClincalWorks (eCW) on creation and execution of a transition plan to reach compliance with the The Office of the National Coordinator for Health Information Technology (ONC) and Office of Inspector General (OIG).
As part of the SQOO, I advised and worked closely with the internal eCW Solution Architecture team to improve software quality with a goal of measurably reducing risk to patient safety.
Worked with eCW leadership and SQOO team members to identify gaps in strategic capability and align plans for IT procurement, hiring and resource allocation to address these gaps.
As part of the SQOO, I investigated causes of software failure and sources of patient safety risk, presenting these findings to the OIG/ONC along with recommendations for remediation. This required communicating complicated technical and patient safety risks to a non-technical audience.
In addition to the above, my work with the SQOO included:

• Evaluating risks in software architectures
• Evaluating SDLC and software risk management practices
• Evaluating compliance with ONC-certifications and recommendations for EHR software
• Evaluating code management and code deployment strategies and plans
• Evaluating the quality of software in accordance with industry standards and best practices
• Documenting the structure and behavior of complex systems
• Making recommendations for improving software safety, reliability, and maintainability based on industry best practices

Masonicare, v. Cerner

2022–Present
Assisting with the review and discovery production of electronic health record implementation components relevant to the case and providing analysis regarding industry standards for electronic health record implementation.

Kilterly v. SolutionStream

2021
Provided analysis of SDLC and DevOps process, and execution of those processes. Provided analysis of software quality, architecture and design.

Acquisition Due Diligence Expert Consultant

2021
Analyzed architecture plan and implementation details of large content aggregation and comprehension system
Performed code quality and Cyclomatic complexity analysis
Evaluated Lambda Architecture implementation and fit for purpose
Evaluated CI/CD process that used Ansible and Terraform in AWS

Aetna Inc. v. Mednax, Inc.

2020
Provided analysis of a pediatric EHR for client and produced material for expert report.
Analyzed opposing expert report and wrote rebuttal arguments identifying multiple flaws and inaccuracies.

FinancialApps, LLC v. Envestnet, Inc. and Yodlee, Inc.

2019–Present
Provided analysis of complex financial systems including analysis of software, documentation, design specifications, architecture decisions and operational processes for expert report.

WIPRO Limited, LLC v. State of Nebraska

2019–Present
Provided analysis of complex financial systems including analysis of software, documentation, design specifications, architecture decisions and operational processes for expert report.

eClinicalWorks, LLC and the Office of the Inspector General of HHS Software Quality Oversight Organization

May 2019–Present

Member of the Software Quality and Oversight Organization (SQOO) under the Corporate Integrity Agreement between eClinicalWorks LLC and the Office of the Inspector General of the United States Department of Health and Human Services dated May 30, 2017. Serving as an independent audit and oversight organization covering a technical review of EHR software and development processes as it relates to patient safety.

The project includes software process and source code review, including review of past issues, recommendations for risk and quality management systems, design controls, improvements to software development and testing processes, code review and manual and automated code quality analysis.