About Apgar & Associates

Headquartered in Portland, Oregon and serving clients nationwide Chris Apgar founded Apgar & Associates, LLC in April 2004 to address the healthcare industry’s growing privacy and security compliance needs that were the result of the Health Insurance Portability and Accountability Act (HIPAA) and newly developed state laws regarding identity theft.

While our roots are in healthcare, we serve other industries as well, placing clients on the path to HITRUST, SOC2 and ISO certifications. Our nationwide HIPAA privacy and security compliance services address the need for assistance with expanded use of electronic health information exchange.

Chris Apgar, CISSP Information Security
Chris Apgar, CISSP, CCISO
Founder, Apgar & Associates

Chris Apgar, CISSP, CCISO, passed away unexpectedly on December 11, 2021. (You can read the obituary here.)

Chris was the founder, CEO, and president of Apgar & Associates, LLC. He was a nationally recognized expert and educational instructor on information security, privacy, HIPAA, the HITECH Act, state privacy law, and electronic health information exchange. He was a frequent instructor, panelist, and panel facilitator for leading national industry groups such as AISHealth, HCPro, HIMSS, Healthcare IT News, AHIMA, and HCCA. Locally, Chris developed and conducted educational webinars for the Oregon Medical Association (OMA), assisting physicians and other medical professionals with privacy and security, and regulatory compliance.

Chris represented AHIMA on the HSCC’s Joint Cybersecurity Working Group’s Workforce Development Task Force. He served for eight years as a member of the Workgroup for Electronic Data Interchange (WEDI) Board of Directors. He was the Chair of the Oregon Prescription Drug Monitoring Program Advisory Commission. He was been a member of the OrHIMA Board of Directors for the past two years. In a former life, he was the HIPAA Compliance officer for Providence Health Plans.

Chris’s clients ranged from small to large health plans, physician groups and hospitals, to third party vendors, business associates, government agencies, and healthcare associations. A nationally known speaker and author, Chris authored the McGraw-Hill Healthcare Information Technology Exam Guide chapter on the regulatory aspects of health IT. He held the designations of Certified Information Systems Security Professional and Certified Chief Information Security Officer. His longtime wife and business partner, Julia Huddleston, continues as principal, furthering their ongoing mission to support businesses striving for privacy and security excellence.

Julia Huddleston holds the designations of Certified Information Privacy Manager, Certified Information Privacy Professional, and Certified (HITRUST) CSF Practitioner. She works with Apgar & Associates’ clients on certification readiness, compliance assessments, security risk analysis and policy and procedure review and implementation. She also oversees and directs Apgar & Associates’ day-to-day business functions, including finance, operations and marketing.

Julia joined Apgar & Associates, is September 2010, after nearly 25 years of state government management. During that time, her career revolved around the systems and methods that state and federal governments use to determine how much to pay service providers, and she has expert knowledge of the finances of healthcare – particularly as related to Medicare and Medicaid. A highly successful grant writer, she has successfully authored and designed multi-million grant programs through both the federal government and philanthropic foundations.

Julia Huddleston CIPP/US, CIPM, CCSFP information security
Julia Huddleston, CIPP, CIPM, CCSFP
Principal Consultant | CFO/COO
Kevin Haralson CHPC, compliance analyst
Kevin Haralson, MBA, CCSFP, CHP
Senior Compliance Analyst

Kevin Haralson, Senior Compliance Analyst, has been with Apgar & Associates, LLC since March 2014. He brings deep healthcare industry experience and provider-level knowledge of HIPAA rules and regulations to Apgar & Associates clients. Kevin primarily works with clients on:

  • HIPAA Privacy and Breach compliance assessments
  • Security Risk Analyses
  • HITRUST readiness preparation

Prior to joining the Apgar & Associates team, he worked for seven years in long-term care on the administrative side, and five years in acute care settings with direct patient care while at Kaiser Permanente and in the United States Navy.

Kevin has an MBA with a focus in healthcare management from Marylhurst University in Oregon and has obtained his CHPC designation (Certified in Healthcare Privacy Compliance) as well as being a Common Core Security Framework Practitioner (CCSFP).

Client Testimonials

“AIS has worked with Chris Apgar regularly on HIPAA privacy and security issues for more than 10 years and our experiences with Chris, in every instance, have been outstanding. He is incredibly knowledgeable, very responsive, and a true pleasure to work with, in every respect.”

Richard Biehl, Publisher
Atlantic Information Services, Inc.

“Chris is an expert in the area of Privacy and Security. I had the pleasure of working with Chris for several years on the National Health Information Security and Privacy Collaborative and his knowledge and ability to work through issues was invaluable to the team. I also had the opportunity to work for Chris on one of his projects and he was a pleasure to work for. If I need advice on Privacy and Security, Chris is the go-to person!”

Kim Snyder, Vice President
Lumetra Healthcare Solutions

“We hired Chris to help our company develop key compliance programs & policies, revolving around information security and HIPAA/HITECH.  Chris and his team exceeded our expectations.  He is very easy to work with and is inventive with his approach to solving problems.”

Stephen Ambrose, CEO
ICEX Data Reporting