CyberScape Health Care

CyberScape Health Care

 
CyberScape Health Care
CyberScape Health Care
Event builder display intro
Virtual Event

The COVID-19 pandemic made health IT more vulnerable than ever as cyberattacks on hospitals, public health organizations and research initiatives soared. This event will highlight the ways federal health IT leaders are securing their networks and sensitive information, and also look back on cyber lessons learned from the COVID-19 pandemic.

Date
June 24, 2021
Time
11:20 am
Where
Virtual event
Watch Videos
 
CyberScape Health Care

Video Replay

As more hospitals and doctors deploy medical devices to serve patients, those devices face increasing cybersecurity risks from bad actors looking to manipulate software through unsecured network connections. Hear from cyber leaders at the VA and FDA about how they’re addressing these risks while keeping pace with health IT innovation. Moderated by David Chandler, Vice President at GovernmentCIO.

Ransomware attacks skyrocketed in recent years, and hospitals are a prime target, suffering hundreds of millions of dollars in damages every year. Federal health IT and cyber leaders are uniquely positioned to address these ransomware challenges. This panel will draw insight from CMS, the VA and more. Moderated by Rich Potocek, Capture Manager at GovernmentCIO.

  • Troy Ament, Field CISO for Healthcare, Fortinet
  • Jim Jones, Director, DHS Center of Excellence for Criminal Investigations and Network Analysis, George Mason University
  • Rob…

The COVID-19 pandemic prompted an onslaught of cyberattacks against federal and private health organizations across the U.S. as they ramped up services to battle the virus and develop a vaccine. Cyber-focused officials from CISA, HHS, and the VA will look back on their COVID-19 response to cyber threats and discuss lessons learned and how the pandemic shapes health IT cyber policy going forward. Moderated by Kate Macri, Researcher and Staff Writer at GovernmentCIO Media & Research.

Related Coverage

Federal agencies have refined their cybersecurity practices to adapt to both newfound threats and the broad shift to remote work.
Federal and industry leaders are bolstering security foundations to protect against evolving ransomware threats.
Agencies are safeguarding data from ransomware and other health sector threats.

Graphics Cam

Illustrator Wade Forbes joined our event to visualize our panelists' conversations and insights. Learn more about Wade Forbes at Redtale.com

Sponsors

Okta
 
Fortinet

Speakers

 

Troy Ament – Fortinet Field CISO for Healthcare brings more than 20 years of experience to Fortinet transforming information technology and security programs, with 14 years in the healthcare sector as an executive overseeing clinical technology implementations and serving as the Chief Information Security Officer at two of the largest integrated health delivery systems in the United States.

Before joining Fortinet, Troy held the positions of Chief Information Security Officer at Beaumont Health and Director, Chief Information Security Officer at Sanford Health where he had oversight of the Security Technology, Security Operations, Identity and Access Management, and Governance Risk and Compliance (GRC) Teams.

Troy has been instrumental in forming multiple healthcare cyber securityboards that focus on the medical device and IoT security and national healthcare cyber security task forces and engaging the education sector to produce more healthcare cyber security graduates and professionals.

Troy has extensive public speaking experience at multiple national and regional conferences, speaking to members of congress, senate, and government agencies educating and advocating for healthcare cyber security. He holds degrees in computer information systems from the University of Mary and North Dakota State College of Science.

Field CISO for Healthcare, Fortinet

Daniel Bardenstein is a Digital Services Expert at DDS, where he advises on and leads large-scale cybersecurity projects within the Department of Defense. Currently, he leads DDS’ Hack the Pentagon program, the Federal government’s first-ever bug bounty program, which brings the best of crowdsourced security to government systems. He also serves as a cybersecurity lead for the U.S. COVID-19 vaccine and therapeutics effort, formerly known as Operation Warp Speed. Prior to joining government, Daniel spent his career in the private sector leading teams to build cybersecurity and national security products. Daniel holds CISSP and GCFA certifications, as well as a patent for network anomaly detection.

Digital Services Expert, Defense Digital Service

Joshua Corman is a Founder of I am The Cavalry (dot org), and serves as Chief Strategist for CISA regarding COVID, healthcare, and public safety. He previously served as CSO for PTC, Director of the Cyber Statecraft Initiative for the Atlantic Council, CTO for Sonatype, and other senior roles. He co-founded RuggedSoftware and IamTheCavalry to encourage new security approaches in response to the world’s increasing dependence on digital infrastructure. His unique approach to security in the context of human factors, adversary motivations, and social impact has helped position him as one of the most trusted names in security. He also serves as an Adjunct Faculty for Carnegie Mellon’s Heinz College, and was a member of the Congressional Task Force for Healthcare Industry Cybersecurity.

Chief Strategist, CISA

Sean Frazier is Federal CSO at Okta. In his role, Sean acts as the voice of the CSO for Okta's federal business. Prior to joining Okta, Sean spent more than 25 years working in technology and public sector security for companies such as Duo Security, Netscape, LoudCloud/Opsware, Proofpoint, Cisco & MobileIron. Sean has helped lead numerous projects used by the Department of Defense and Intelligence Community, including the Fortezza Crypto Card, Defense Messaging System (DMS) and many others. He also has extensive experience in identity and public key infrastructure (PKI), network, applications, mobile and IoT. Sean has testified in front of the U.S. Senate Homeland Security and Government Affairs Committee on the importance of public/private partnership in protecting the nation’s digital infrastructure. Sean also advises public/private partnership working groups including ACT-IAC, ATARC and many others.

Federal Chief Security Officer, Okta

Dr. Grant Huang helps lead an enterprise-focused research strategy for planning, integrating and coordinating VA resources to enhance evidence-based care for Veterans. This enterprise includes field-based research programs at over 100 VA medical centers where pre-clinical, clinical, health services, informatics and genomics research are conducted.  Additionally, he provides leadership for the Cooperative Studies Program (CSP), a clinical research infrastructure supported by ORD that specializes in the design and conduct of multi-site clinical trials and large-scale observational studies.  Altogether, Dr. Huang helps establish transformative research partnerships with VA, federal and industry collaborators to enable innovative scientific opportunities for VA investigators and Veterans.

During his VA tenure, Dr. Huang has been part of the design and conduct of over 100 multi-site national and international clinical studies, establishment of the Million Veteran Program, and implementation of quality standards, including those for International Organization of Standards 9001 registration.  He has authorships in over 125 publications covering clinical, health services and rehabilitation topics in various scientific journals including the New England Journal of Medicine and the Journal of the American Medical Association.  These publications have addressed findings across a range of diseases and conditions, research methodologies and innovations and research policy. 

Dr. Huang received his education and training from the University of California, Berkeley, the Uniformed Services University of the Health Sciences, and Cornell University. His background is in biostatistics/epidemiology and behavioral medicine/medical psychology with a particular emphasis in musculoskeletal disorders, biomechanical and psychological stress, and work organization. More recently, his interests focus on organizational performance, quality management and improving clinical trials recruitment.  He has also served on various committees including ones with the Clinical Trials Transformation Initiative, Association for Clinical Research Professionals, Office of Science and Technology Policy and National Academies of Science, Engineering and Medicine.

Director, Cooperative Studies Program, VA

Jim Jones has been a cyber security and digital forensics practitioner, researcher, and educator for over 25 years in industry, government, and academia. That experience drives his teaching, which blends theory and practical applications, and his research, which focuses on the extraction, analysis, and manipulation of full and partial digital artifacts. Jim and his students spend their days (and nights) collecting and analyzing these digital clues and fragments, much like a traditional archaeologist works with old pieces of pottery or a detective works with crime scene evidence. This analysis helps them look backwards in time to understand cyber attacks, find malware infections, detect system and device misuse, and recover lost data. Jim currently serves as the Director and digital forensics lead for Mason's DHS Center of Excellence for Criminal Investigations and Network Analysis (https://cina.gmu.edu/).

Jim's research funding comes from industry and the US Government. Past and current funded research sponsors include the Defense Advanced Research Projects Agency (DARPA), the U.S. Department of Homeland Security (DHS), the National Science Foundation (NSF), and the United States Department of Defense (DoD). He has degrees in Systems Engineering (BS), Mathematical Sciences (MS), and Computational Sciences and Informatics (PhD). This formal education is complemented with work experience and extensive self-learning, driven by an insatiable curiosity and a need to know how things work, how they break, and what we can learn from both.

Director, DHS Center of Excellence for Criminal Investigations and Network Analysis, George Mason University

Ms. Tamara Lilly is the Assistant Inspector General (AIG) for the Office of Audit Services (OAS) at the Department of Health and Human Services (HHS). She joined the OIG in April 2019 and oversees the cybersecurity and information technology audit program. The mission is to provide timely, impactful, and relevant cybersecurity and IT audits of the systems, tools, and techniques used by or on behalf of HHS to support healthcare delivery to beneficiaries and reporting for decision making such as telehealth, artificial intelligence, and electronic health records. Prior to HHS, she served as the Deputy Chief Information Security Officer (CISO) at the Department of Homeland Security focused on strengthening its cybersecurity and information technology posture.  

Ms. Lilly is a Certified Information Security Auditor. She earned a Computer Science degree from the University of Maryland Baltimore County and Masters Certificate from George Washington University in Management Information Systems. 

Assistant Inspector General, Audit Services, HHS

Mr. Ronald Pulivarti is the Project Lead Engineer for Cybersecurity in the Healthcare Sector at the National Institute of Standards and Technology (NIST), National Cybersecurity Center of Excellence (NCCoE).  Mr. Pulivarti has a strong technical background and cybersecurity experience in multiple high value asset applications.  Prior to NIST, Mr. Pulivarti has worked within the Department of Health and Human Services (DHHS) and served in many IT leadership roles for over 20 years. 

Project Lead Engineer for Cybersecurity, Healthcare Sector, NIST

Jessica Wilkerson is a Cyber Policy Advisor with the All Hazards Readiness, Response, and Cybersecurity (ARC) team in the Center for Devices and Radiological Health (CDRH) within the Food and Drug Administration (FDA). As part of ARC, she examines issues and develops policy related to the safety and effectiveness of connected medical devices. Previously, she worked as the Cybersecurity Research Director for the Linux Foundation, and spent over five years as a congressional staffer with the House Committee on Energy and Commerce, covering cybersecurity issues in the telecommunications, commercial, energy, and health sectors. As part of that work, she examined issues related to coordinated vulnerability disclosure, software supply-chain transparency, legacy technology risks, and cybersecurity governance models, among others. She received a B.A. in Policy Studies and minors in Computer Science and Mathematics from Syracuse University, and is currently pursuing a J.D. from the Catholic University of America’s Columbus School of Law.

Cyber Policy Advisor, FDA
CISO, CMS

Beau Woods is Senior Advisor with CISA, Cyber Safety Innovation Fellow with the Atlantic Council, a leader with the I Am The Cavalry grassroots initiative, Founder/CEO of Stratigos Security, and sits on the board of several non-profits. His work bridges the gap between the security research and public policy communities, to ensure connected technology that can impact life and safety is worthy of our trust. He formerly served as Entrepreneur in Residence with the US FDA, and Managing Principal Consultant at Dell SecureWorks. Over the past several years he has consulted with Fortune 100s and governments, organized events at the RSA and DEF CON conferences, and brokered trust among disparate communities.

Senior Advisor, CISA

Agenda

 
-

Opening Remarks

  • Michael Hoffman, President, GovernmentCIO Media & Research
-

IoT and Medical Device Security

As more hospitals and doctors deploy medical devices to serve patients, those devices face increasing cybersecurity risks from bad actors looking to manipulate software through unsecured network connections. Hear from cyber leaders at the VA and FDA about how they’re addressing these risks while keeping pace with health IT innovation.

  • Sean Frazier, Federal Chief Security Officer, Okta
  • Ronald Pulivarti, Project Lead Engineer for Cybersecurity, Healthcare Sector, NIST
  • Jessica Wilkerson, Cyber Policy Advisor, FDA
  • Beau Woods, Senior Advisor, CISA
  • Moderator: David Chandler, Vice President, GovernmentCIO
-

Protecting Medical Data from Ransomware and Theft

Ransomware attacks skyrocketed in recent years, and hospitals are a prime target, suffering hundreds of millions of dollars in damages every year. Federal health IT and cyber leaders are uniquely positioned to address these ransomware challenges. This panel will draw insight from CMS, the VA and more.

  • Troy Ament, Field CISO for Healthcare, Fortinet
  • Jim Jones, Director, DHS Center of Excellence for Criminal Investigations and Network Analysis, George Mason University
  • Rob Wood, CISO, CMS
  • Moderator: Rich Potocek, Capture Manager, GovernmentCIO
-

Looking Back: Vaccine Research and COVID-19 Response

The COVID-19 pandemic prompted an onslaught of cyberattacks against federal and private health organizations across the U.S. as they ramped up services to battle the virus and develop a vaccine. Cyber-focused officials from CISA, HHS, and the VA will look back on their COVID-19 response to cyber threats and discuss lessons learned and how the pandemic shapes health IT cyber policy going forward.

  • Daniel Bardenstein, Digital Services Expert, Defense Digital Service
  • Josh Corman, Chief Strategist, CISA
  • Grant Huang, Director, Cooperative Studies Program, VA
  • Tamara Lilly, Assistant Inspector General, Audit Services, HHS
  • Moderator: Kate Macri, Researcher/Staff Writer, GovernmentCIO Media & Research
-

Closing Remarks

  • Michael Hoffman, President, GovernmentCIO Media & Research