Cybersecurity Through Multi-Party Environments: A Federal Perspective

October 17, 5:30pm - 9:00pm

LMI Building, 7940 Jones Branch Dr. Tysons, VA 22102

Download the October 2024 Program Slides

5:30 - 6:15pm - Networking

6:15 - 6:30pm - Welcome & Announcements

6:30 - 7:30pm - Program

7:30 - 9:00pm - Networking

Cybersecurity in healthcare is all about patient safety. Health IT provides critical, life-saving functions and consists of connected, networked systems that leverage technologies, leaving such systems more vulnerable to cyberattacks. Unfortunately, these cyberattacks cause major disruptions in providing care. Given the increasingly sophisticated and widespread nature of cyberattacks, the federal government has increased its efforts to improve the cybersecurity posture of the healthcare sector. These efforts have also established strategies and resources to guide organizations of all security maturity levels to support these enterprises in their efforts to build cyber resilience.

In this panel, representatives from the federal government will discuss the cyber threats faced by healthcare organizations and their agency's efforts to improve the cybersecurity posture and resilience of the sector.

Moderator

 

 

 

 

 

Mr. Bob Bastani, CISSP, CISM, CRISC

Senior Cyber Security Advisor for the Healthcare and Public Health Sector

HHS ASPR

Bob Bastani is the Senior Cyber Security Advisor for Critical Infrastructure at the Administration for Strategic Preparedness and Response (ASPR). He also co-leads the government-wide cybersecurity coordinating council for the Health Sector and the Joint Healthcare and Public Health Sector (HPH) Cyber Security working group. In his role, Mr. Bastani works with federal government, state, local, tribal and territorial (FSLTT) entities and public and private owners and operators of critical infrastructure. He also works with healthcare and public health facility managers in order to improve the sector’s cyber security risk posture. Prior to HHS, Mr. Bastani worked for IBM in various cyber security leadership and advisory roles where he held consultancy relationship with senior industry and agency executives. 

Mr. Bastani holds a BS in Electrical Engineering, MS in Business Technologies and a number of industry certifications including CISSP, CISM and CRISC.

Speaker

 

 

 

 

 

 

Mr. Thomas G. Hines

Defense Health Agency Chief Information Security Officer at DHA

Mr. Tom Hines is the Defense Health Agency (DHA) Chief Information Security Officer (CISO) and serves as an advisor to the DHA Chief Information Officer (CIO).  As the Agency CISO, Mr. Hines manages the Agencies’ Cyber Security Program, responsible for the confidentiality, integrity, and availability of DHA Information Technology (IT) infrastructure, business systems, technology platforms, and devices, and the compliance, monitoring and active defense of these systems and Agency data, consistent with Federal Law, DoD Policy, Directives, and Instructions.

Mr. Hines is a technical manager and Certified Information Systems Security Professional (CISSP) with over 40 years of experience in engineering, information systems consulting, and the management of large-scale technology programs.  He managed the initial production deployment of the Composite Health Care System (CHCS) from 1992 to 1995 and oversaw the deployment of the MHS Intranet (MHSi) from 2002 to 2005.  In 2005, Mr. Hines became the MHS Chief Architect, Networks and Security, and after serving in that role for a decade, took on the added responsibility as the acting Program Manager for the Medical Community of Interest (Med-COI).  In November 2018, Mr. Hines became a DHA government civilian under a term appointment as the Director Engineering and Technology Transformation, where he advised on technology strategy, IT business operations, and security of platforms, infrastructure, and networks supporting the global DoD health enterprise.  He also served for three (3) years as the DHA Authorizing Official, a role he will resume as the Agency CISO.  Between then and now, he was a consultant with the Mitre Corporation, and continued his support of both the DHA and VA, in information security and health IT modernization.

Mr. Hines holds a Bachelor of Science in Industrial Engineering Technology and has completed continuing education in security, advanced networking, and virtualization technologies.  Before beginning his support to the MHS, Mr. Hines worked for several large Defense Contractors as a project engineer supporting major weapons systems, among them; Titan Missile Defense, B-1 Bomber program, Navy Vertical Launching System, and the Patriot Missile Defense system.

Speaker

 

 

 

 

 

 

Mr. Nicholas Heesters

Senior Advisor for Cybersecurity for the HHS Office of Civil Rights 

Nicholas Heesters is a certified information privacy professional with over 30 years of experience supporting critical infrastructure and information security in various industries including financial services, defense, and healthcare. He earned his Master of Engineering in Computer and Software Engineering and Juris Doctor from Widener University. Mr. Heesters currently serves as the Senior Advisor for Cybersecurity for the HHS Office for Civil Rights supporting HIPAA compliance, enforcement, and policy initiatives.

Speaker

 

 

 

 

 

 

 

Ms. Charlee Hess

Director of the Healthcare and Public Health Cybersecurity Division at HHS ASPR

Ms. Charlee Hess is the Director of the Healthcare and Public Health Cybersecurity Division within the Department of Health and Human Services (HHS) Administration for Strategic Preparedness and Response (ASPR). Ms. Hess has over 20 years of experience leading critical infrastructure, emergency preparedness, and homeland security initiatives. In her current role, Ms. Hess leads the team responsible for supporting cybersecurity preparedness and response for the Healthcare and Public Health Sector. Ms. Hess holds a Master of Public Administration from George Washington University and a Bachelor’s degree in Political Science from Binghamton University. 

Opening Remarks from HIMSS

Ms. Lee Kim

Senior Principal of Cybersecurity and Privacy at HIMSS

Lee Kim is the Senior Principal of Cybersecurity and Privacy at HIMSS. Ms. Kim also serves as a Director of InfraGard Northern Capital Region, Vice Chair of the Policy Committee of the American Bar Association Health Law Section, National Visiting Committee member of the National Cybersecurity Training and Education Center (appointed by the National Science Foundation as the healthcare representative for NCyTE), and member of the US Department of Homeland Security Analytic Exchange Program. Ms. Kim is also an actively licensed attorney with an AV Preeminent peer review rating.