Director of Privacy and Security


Lee Kim is the director of privacy and security at the Healthcare Information and Management Systems Society (HIMSS) and a fellow of HIMSS. HIMSS is a global, cause-based, not-for-profit organization focused on better health through information technology (IT). HIMSS leads efforts to optimize health engagements and care outcomes using information technology. Previously, Kim worked as a technologist in the healthcare and information technology industries and as a healthcare and intellectual property attorney in private practice.

Kim serves as a regulatory and legal analyst of proposed and final regulations and laws. Kim produces reports on privacy and cybersecurity threats, vulnerabilities, and mitigation information. Kim functions as a collaborator and liaison with HIMSS members and external entities on privacy and cybersecurity issues. Kim serves as a staff liaison for volunteer-led privacy and cybersecurity groups.

Kim is a member of the SANS Institute Securing the Human Healthcare advisory board, Healthcare and Public Health (HPH) Cybersecurity Working Group, the International Association of Privacy Professionals, and the International Information System Security Certification Consortium (ISC)².

Kim is a Certified Information Systems Security Professional (CISSP), a Certified Information Privacy Professional for the US Private Sector (CIPP/US), a licensed attorney in the District of Columbia and Pennsylvania, and a registered patent attorney with the United States Patent and Trademark Office. Kim is admitted to practice before the United States Court of Appeals for the Federal Circuit and the United States District Court for the Western District of Pennsylvania. Kim holds an AV Preeminent® peer review rating in health care and intellectual property law from Martindale-Hubbell. Kim has been recognized by American Registry as one of “America's Most Honored Professionals-Top 1%."

Kim’s publications have included articles in E-Commerce Law & PolicyE-Finance & Payments Law & Policy, and a chapter in the American Bar Association book, Health Care IT: The Essential Lawyer’s Guide to Health Care Information Technology and the Law.