WHERE THE BRIGHTEST MINDS in health and IT meet.

Top Traits of Effective Healthcare CISOs and Their Staff

February 22, 2017 — 08:30AM - 09:30AM EST
Orange County Convention Center
Hall F4
Session ID: 


In every healthcare organization, there has to be someone to lead the struggle to protect data and systems against the full spectrum of threats, from natural disasters to cyber criminals. In many organizations that person is titled Chief Information Security Officer or CISO. Although titles for this role may vary, including IT Security Manager, CSO and more, someone has to be in charge of Cybersecurity. But a review of the literature shows that the requirements for effective performance in this critical role are currently under-researched. This presentation delivers key findings from original academic and private industry research conducted to fill that knowledge gap. The goal is not only to increase understanding of what it takes to be an effective CISO, but also offer concrete suggestions for improving the career path to this role, including staffing supporting roles in the face of a widely documented shortage of qualified candidates. The outcome is a stronger and more sustainable IT security posture for healthcare organizations.

Learning Objectives: 

  • Develop a deeper understanding what it takes to successfully staff the roles and responsibilities involved in defending healthcare information systems from the full spectrum of threats, from natural disasters to cyber criminals and regulatory risks
  • Recognize how to navigate the current research into effective cybersecurity staffing, from the knowledge, skills, and abilities (KSA) required to the desirable aptitudes and personality traits
  • Apply your organization's recruitment and retention efforts by applying insights drawn from both established and ongoing research into cybersecurity roles
  • Explain the knowledge required to advise Human Resources on cost-effective security recruitment strategies, thereby strengthening security posture
  • Analyze public and private initiatives that are working to close the cybersecurity skills gap, in healthcare and beyond, and how to get involved with them


Security Professional
Privacy Professional
Senior IT Executive





in health and IT meet.