Issue link: https://beckershealthcare.uberflip.com/i/1141789
53 in East Stroudsburg, Pa. He has received the Cer- tified Information Security Manager certification from ISACA and the Certified Information Sys- tems Security Professional certification from the International Information System Security Certi- fication Consortium. Mr. Crain chairs the UMMS Security Council and oversees the development and approach to the UMMS adoption of the NIST framework for cybersecurity. Lee Cullivan. CISO of Boston Medical Center. Mr. Cullivan is responsible for IT at Boston Medi- cal Center, a 487-bed hospital with 747 physicians and 5,123 staff members. He has a background in technology services and spent time as a custom- er solutions engineer in the healthcare division of Dell EMC and director of technology at Pierce At- wood before taking on his current role. Phil Curran. Chief Information Assurance Of- ficer and Chief Privacy Officer of Cooper Uni- versity Health Care (Camden, N.J.). Mr. Curran had a two-decades-long military career before he re-entered civilian life in 2000 and became super- visor of information security for Campbell Soup Co. He joined Cooper University Hospital in 2003 and now serves as chief information assurance of- ficer and chief privacy officer. During his time at the health system, which includes 7,000 employ- ees, he has overseen projects to build and install a secure mail system and secure medical devices. Auston Davis. CISO of Lucile Packard Chil- dren's Hospital at Stanford (Calif.). Mr. Davis is responsible for the information security strategy, vision and leadership at Lucile Packard Children's Hospital and Stanford Children's Health. He has experience with cyber-forensics and using big data coupled with threat intelligence to devel- op predictive attack prevention. Before joining Lucile Packard, Mr. Davis was director of infor- mation security at Oakland, Calif.-based Kaiser Permanente and spent time as interim CISO and director of threat response and investigations at Symantec. Erik Decker. Chief Security and Privacy Officer of UChicago Medicine. Mr. Decker is a decorat- ed CISO with experience leading information se- curity for the UChicago Medicine, a health system with more than 16,000 employees. e Universi- ty of Chicago Medical Center has 848 attending physicians and 811 licensed beds. Mr. Decker is also responsible for ensuring privacy and security for Ingalls Health System in Harvey, Ill., and the University of Chicago Physician Practice Group. In 2017, the Information Systems Security Asso- ciation of Chicago named Mr. Decker CISO of the Year. Scott Dresen. Senior Vice President of Infor- mation Services, Chief Technology Officer and CISO of Spectrum Health (Grand Rap- ids, Mich.). Mr. Dresen joined Spectrum Health in 2007 aer spending time as CIO for Wayne State University Physician Group in Troy, Mich. He is now responsible for Spectrum's enterprise technology and information security functions, managing the cloud infrastructure and enter- prise architecture. Mr. Dresen is a member of the American College of Healthcare Executives and fellow of HIMSS. Kelley Ealy. CISO of TriHealth (Cincinnati). Ms. Ealy became the first CISO of TriHealth in March 2018, responsible for developing an en- terprisewide information security management program in collaboration with the chief compli- ance officer and CIO. She works with the health system's business units to implement systems that will meet security standards and protect patients. Before joining TriHealth, Ms. Ealy was CISO for Soware Information Systems in Lexington, Ky. Michael Erickson. CISO of Baptist Health (Lou- isville, Ky.). Mr. Erickson became CISO of Baptist Health in November 2016 aer spending time as the system director of IT infrastructure, HIPAA security officer and executive director of IT infra- structure and security. He also serves on Baptist Health's enterprise risk management committee and serves as a member of the Evanta Cincinnati CISO Executive Summit governing body. Cris Ewell, PhD. CISO of UW Medicine (Seat- tle). Dr. Ewell is a senior leader in UW Medicine's information security program with strategic and operational oversight of the security framework, teams and policies to minimize risk. He is focused on decreasing exposure and improving system- wide awareness of security threats. In addition to his experience with UW Medicine, Dr. Ewell has worked with Seattle Children's Hospital and other organizations to implement risk manage- ment programs and encourage dialogue around security. Nick Falcone. Information Security Officer of Penn Medicine (Philadelphia). Mr. Falcone oversees the office of information security at the University of Pennsylvania, which is responsible for developing and maintaining security pro- grams. He has experience protecting computing resources and information assets against cyber threats. Before joining Penn Medicine, Mr. Fal- cone led Philadelphia-based Einstein Healthcare Network's information security and privacy pro- gram and served as Philadelphia-based omas Jefferson University Hospitals' enterprise infor- mation security officer. Wayne Floyd. CISO of Saint Francis Healthcare System (Cape Girardeau, Mo.). Mr. Floyd be- came the CISO of Saint Francis Healthcare Sys- tem in 2017. He oversees IT security policy im- plementation and ensures adherence to standards with assessments and evaluations. With more than 20 years of his career in IT and cybersecuri- ty, Mr. Floyd brought significant experience to his role at the health system, which includes a 308- bed flagship hospital. Bruce Forman. CISO of UMass Memorial Health (Worcester, Mass.). Mr. Forman over- sees information security for a workforce of around 13,000 people as CISO of UMass Memo- rial Health. He has experience with EHR securi- ty and during his time at UMass has contributed to the team that established security standards and an IT control environment to meet HIPAA regulations. He also spent time as director of information security for Genesis HealthCare in Lake Forest, Calif., prior to joining UMass. Don Fosen. System Director of Technology and CISO of Elmhurst (Ill.) Hospital. Mr. Fos- en is responsible for the information security of Edward Elmhurst Healthcare, a three-hospital health system. He has experience leading op- erational improvement and projects related to building a security team. Mr. Fosen has previous experience as director of technology services at Sinai Health System in Chicago and owner of a consumer-focused IT consulting firm. Jeremiah Grant. Vice President and CISO of Novant Health (Winston-Salem, N.C.). Mr. Grant leads information security for a 15-hos- pital health system as vice president and CISO of Novant Health. He has experience leading a cybersecurity team and working with the sys- tem's clinical and corporate partners on health IT projects. He has more than 15 years of fo- cused efforts in healthcare cybersecurity and the public health sector. Kevin Hamel. CISO of Baystate Health (Spring- field, Mass.). Mr. Hamel joined Baystate Health in 2017 aer spending time as CISO of COCC, a financial technology company, and vice president of IT for Peoples Bank. He is responsible for the in- formation security of Baystate's five hospitals and more than 80 medical practices. e health system has a 12,000-member workforce and 980 beds. Mr. Hamel has spent more than 25 years of his career managing IT, cybersecurity and risk management. Judy Hatchett. Vice President of Information Security and CISO of Fairview Health Services (Minneapolis). Ms. Hatchett has more than 20 years of experience in IT with a focus on cyber- security, compliance and access management. She also has a keen interest in service and identity management. In her role as vice president of in- formation security and CISO of Fairview Health Services, Ms. Hatchett oversees information secu- rity for the health system with more than 34,000 employees. She has experienced success building enterprisewide teams and implementing new tools to increase security. Andy Heins. Vice President and Information Se- curity Officer at LifePoint Health (Brentwood, Tenn.). As the vice president and information se- curity officer of LifePoint, Mr. Heins is responsible for the 89-hospital health system's information security, risk management and protection. He has experience in information security compliance