Speakers

Gerald Auger, PhD

Gerald Auger, PhD

Information Security Architect, MUSC

Gerry is passionate about information security and believes there is an appropriate, tailored information security program for every organization. At the Medical University of South Carolina he’s responsible for setting the information security strategy and designing solutions to realize it. He holds a PhD in Cyber Operations.

Sri Bharadwaj

Sri Bharadwaj

Sr. Director, Information Systems & CISO, UCI Health

Sriram has over 25 years of Information Management Systems experience in multiple industries including healthcare. Sri has held many leadership positions in health plans. Prior to his current work at UCI, he consulted with Integrated Delivery Networks around ACO, HIE and clinical integration.

Gerry Blass

Gerry Blass

President & CEO, ComplyAssistant

Gerry brings over 35 years of experience in healthcare IT. Prior to ComplyAssistant, he was the Chief Information Security Officer for a major healthcare system in New Jersey, where he built the HIPAA Privacy and Security programs and chaired their multidisciplinary governance team. In 2002 Gerry founded ComplyAssistant to provide software and service solutions for HIPAA and IT strategic planning. He currently chairs the NJ HIMSS Privacy, Security and Compliance Committee.

Alex Everett, CISSP, SABSA

IT Security Architect, UNC Chapel Hil

Alex started his cybersecurity journey as an undergraduate in the Department of Electrical and Computer Engineering at Oklahoma State University. While there he worked on intrusion detection and prevention, digital forensics, penetration testing, and device encryption. Arriving at UNC-CH in 2007, he has spent the last decade operating network security devices, handling incidents, and working with customers on projects. Alex holds both CISSP and SABSA certifications.

Nakia Grayson

Nakia Grayson

IT Security Specialist, NIST

Nakia supports the NIST Privacy Engineering Program with development of privacy risk management best practices, guidance and communications efforts. She also leads Supply Chain Assurance project efforts at the National Cybersecurity Center of Excellence and serves as the Contracting Officer Representative for NIST cybersecurity contracts. She earned her MBA and MS in Information Technology, Information Assurance and Business Administration from the University of Maryland University College.

Adam Greene

Adam Greene

Partner, Davis Wright Tremaine LLP

Adam specializes in health information privacy and security laws, using his experience as a former regulator to help clients understand how they can permissibly leverage their health data, bring their information security programs into compliance with the HIPAA Security Rule, and respond to potential breach incidents. Before joining DWT, Adam worked on HIPAA and the HITECH Act at the U.S. Department of Health and Human Services in its Office of General Counsel and Office for Civil Rights. He drafted and negotiated the first HIPAA financial settlement agreements on behalf of the government, and assisted with implementing the HITECH Act and drafting the first HIPAA Breach Notification Rule. He earned his MPH and law degrees from The George Washington University.

Karen Greenhalgh, HCISPP, CHC, CHPC

Karen Greenhalgh, HCISPP, CHC, CHPC

Managing Principal & Founder, Cyber Tygr

Karen has extensive experience managing HIPAA and NIST-CSF requirements within medical centers and is an ISC2 certified Healthcare Information Security & Privacy Practitioner (HCISPP). She has combined this knowledge with her successful entrepreneurial history to establish Cyber Tygr, a corporation focused on providing economical healthcare cybersecurity and privacy solutions.

Ty Greenhalgh, HCISPP

Ty Greenhalgh, HCISPP

CEO, Cyber Tygr

Ty has dedicated over 30 years to the health technology industry. He is an ISC2-certified healthcare information security and privacy practitioner (HCISPP) and cybersecurity officer. He has a strong background providing support to executive boards to meet their business, technology, cyber-risk and information protection objectives while maximizing the value of their information assets.

Kurt Griggs

Senior Information Security Analyst, Mayo Clinic

Kurt co-leads the evaluation and implementation of Mayo’s recent Medical Device and IoT Security solution. Kurt remains a Mayo Clinic subject matter expert on medical device security and the integration of security technologies into their ecosystem. His career has focused on Auditing and Security Management of Information Technology since 1999. He previously served as Mayo’s IT/IS Audit leader for eight years. He is a member of the HHS 405(d) and H-ISAC’s Medical Device Security Information Sharing Council Group.

Bill Hagestad, MS

Bill Hagestad, MS

Senior Principal Product Cyber Security Engineer, Medtronic

Bill teaches on cyber intelligence, counterintelligence and protecting industrial control systems at the National Security Agency Cybersecurity Center of Excellence. He serves as an executive board advisor for DEFCON’s BioHacking Village and is an internationally registered white hat hacker. He is an authority on the People’s Republic of China’s use of computer and information network systems as a weapon, and has written numerous books and speaks internationally on the subject. He holds three MS degrees: in Military Strategy, Security Technologies and Management of Technology. He is a retired Lieutenant Colonel from the US Marine Corps.

Michael Hancock, CISSP, CISA, PMP, CRISC

Michael Hancock, CISSP, CISA, PMP, CRISC

Information Security Analyst, Duke Health Technology Solutions

Michael has over 20 years of experience in Cybersecurity. His security and privacy specialties include healthcare applications and mobile devices. As Information Security Manager for a local municipality, his responsibilities included balancing the Public’s need to know verse the very real need for information protection. As the Director of Compliance at one of the ‘Baby Bell’ telecom companies, his team managed to wade through the complex maze of regulatory requirements to provide successful outcomes for their customers. For the past three years, he has applied technical and common sense controls to the unique challenges in healthcare at Duke Health.

Clyde Hewitt

Clyde Hewitt

Executive Advisor, CynergisTek

Clyde brings more than 30 years of executive leadership experience in cybersecurity to his position with CynergisTek. His responsibilities include being the senior security advisor and client executive, thought leader and developer of strategic direction for information and cybersecurity services, nationwide business development lead for security services, and contributor to CynergisTek’s industry outreach and educational events.

Matt Jones

Matt Jones

Information Security Architect, MUSC

Matt started in IT as an application developer and database administrator almost 20 years ago, but has spent the last 14 years in Information Security. He joined MUSC in 2012 as the second member of the Information Security team. He holds BS degrees in Business Management and Management Science from the University of South Carolina.

Jill McCormack, MHA, M.Ed

Jill McCormack, MHA, M.Ed

VP, Chief Compliance & Privacy Officer, VCU Health System

Prior to serving in this role, Jill spent ten years in Compliance Services at VCUHS. Her professional areas of interest are patient privacy, physician engagement, and organizational dynamics and change. Prior to coming to the health system, Jill worked in the sports medicine profession as a certified athletic trainer for ten years. She earned her MS in Health Administration from Medical College of Virginia, Masters of Education from Auburn University, and BA in Sports Sciences from UNC. She also holds a certification in Healthcare Compliance.

Dawn Morgenstern, MBA, CHPC

Dawn Morgenstern, MBA, CHPC

Senior Principal Consultant & Chief Privacy Officer, Clearwater

Dawn provides professional consulting services related to the development of HIPAA policies and procedures, HIPAA compliance and/or security controls gap remediation, Business Associate management,etc. She has experience in health care systems, including hospitals. She earned her BA in Business Administration from Columbia College and MBA from Webster University, and maintains certification in Healthcare Privacy Compliance (CHPC).

Tom Mustac, DIA

Tom Mustac, DIA

Senior Director, Biomedical Cybersecurity, Mount Sinai Health System

Tom is responsible for the cybersecurity of medical internet of things (MIoT) devices across The Mount Sinai Health System’s facilities including the Icahn School of Medicine at Mount Sinai, eight hospital campuses and more than 400 ambulatory practices. He collaborates with medical device manufacturers, leading medical institutions and government agencies to promote the adoption of standards, industry best practices and building consensus to promote patient safety across all audiences. He earned his Doctor of Information Assurance from the University of Fairfax, and holds two MBA degrees from Iona College. He holds numerous certifications, including CISO, CRISC, CISSP, CISM and CISA.

Nancia Odom, MSN, RN-BC

Nancia Odom, MSN, RN-BC

Nursing Informatics Systems Specialist III, Team Lead, Duke Health Technology Solutions

Nancia has 17 years of nursing informatics and project management experience in a corporate healthcare environment. She also has over six years of healthcare management, patient flow and hospital operations experience. She earned her BSN from NC Central University and MS in Nursing Informatics from UNC Chapel Hill.

Karen Pagliaro-Meyer, CHC, CHPC

Karen Pagliaro-Meyer, CHC, CHPC

Chief Privacy Officer, Columbia University Medical Center

Karen has over 25 years of experience in healthcare privacy, research, compliance, regulatory affairs, safety and quality improvement at large academic medical centers. She previously served as Director of Corporate Compliance & Privacy Officer at New York-Presbyterian Hospital.

Brian Penders

CISO, UNC School of Medicine

Brian started his cybersecurity journey while working in state law enforcement for 15 years, overseeing a computer crimes unit and digital forensics lab before arriving at UNC in 2014, where he led a DFIR team in central IT before transitioning to the School of Medicine. Brian is a Navy submarine engineering veteran and he holds CISSP and EnCE certifications.

Tanisha Raiford, JD

Tanisha Raiford, JD

Chief Privacy Officer & Senior Billing Compliance Officer, Weill Cornell Medicine

Tanisha has over 15 years of experience in healthcare operations, privacy, research, compliance, regulatory affairs, quality improvement, and managed care in both physician practices and large academic medical centers. She previously served as Vice President of a Health Care Management firm where she was responsible for compliance, privacy, medical malpractice, internal audit, revenue cycle, and operations. She holds a JD and MPA, with CIPP, CHRC, CHPC, CCEP, CHC and CHPC certifications.

Anurag Shankar, PhD

Anurag Shankar, PhD

Senior Security Analyst, Indiana University

Anurag has nearly 20 years of experience developing, delivering, and managing IU’s central research cyberinfrastructure. He is a member of IU’s Center for Applied Cybersecurity Research and has expertise in regulatory compliance and cybersecurity risk management. He earned his PhD in Astronomy from the University of Illinois at Urbana-Champaign.

Greg Singleton, MS

Greg Singleton, MS

Director, Health Sector Cybersecurity Coordination Center, U.S. Department of Health and Human Services

The Health Sector Cybersecurity Coordination Center (HC3) is a U.S. HHS group working to improve cybersecurity in the healthcare and public health sector. Greg previously worked at the Department of Energy as a Senior Advisor on power grid cybersecurity, critical infrastructure protection, and grid resilience. He holds a BS in Systems Engineering from the University of Virginia, and MS degrees in Political Science and Technology & Policy from the Massachusetts Institute of Technology.

Jason Tahaney

Jason Tahaney

Director of Technology, Community Options, Inc.

Jason has over 20 years of experience in health IT. He previously served as the Director of IT at Hunterdon Healthcare System for over 21 years. His current organization provides community-based residential and employment support services to people with mental retardation, autism, physical disabilities, traumatic brain injury, and dual diagnoses. 

William Welch

Cyber Engagement Lead, HHS Health Sector Cybersecurity Coordination Center

Prior to joining HC3, William was the HHS Healthcare Threat Operations Center Lead, managing cyber information sharing and collaboration across the Federal healthcare and public health partners. He served in the U.S. Air Force from 2006-2014, where he was selected as one of the initial cadre for the Air Force cyber career field. He graduated from Western Governors University with a Bachelor’s degree in Information Technology.

Time-worthy information presented by respected speakers on the subjects.

—2018 Conference Attendee

Click here to read the session descriptions.