Boston, 2018 x2, MA
Oct. 15-16, 2018

Anahi Santiago

Chief Information Security Officer
Christiana Care Health System

Anahi Santiago is the Chief Information Security Officer for Christiana Care Health System, one of the country's largest health care providers, ranking 21st in the nation for hospital admissions.  In her role, she has overall responsibility for the organization’s Information Security program. Anahi Santiago leads a team of professionals in supporting Christiana Care's strategic initiatives by managing risks, implementing policies and controls and generating overall awareness.

She is a member of several Information Security and Privacy organizations and an active contributor in member areas including steering/advisory committees and a nationally recognized speaker on the various subjects of Information Security and Privacy. An extremely passionate professional in areas of information security, privacy, strategic alignment, process development and overall governance.  

Anahi holds a B.S. in Electrical and Computer Engineering as well as an Executive MBA from Drexel University.


October 15, 2018
2:20pm - 3:00pm
America Ballroom

The changing world of cyberspace can make information security management feel like navigating travel to a distant planet. It can be daunting. Fortunately, the NIST Cybersecurity Framework is a cost-effective, easy to understand guide to help healthcare organizations better manage and reduce cyber risk.

In this session, speakers use the framework to guide a discussion on how healthcare security has evolved from prevention to response. Attendees will learn how security standards like the NIST CSF can be applied to respond and recover from attacks of all shapes and sizes.

Key discussion points

  • Evolutions in the people, process, and technology needed to support the NIST CSF areas for respond and recover phases.
  • Security automation tools.
  • Establish a plan to facilitate rapid, efficient response to reduce the impact of a breach.
  • Lead an internal cultural shift to change attitudes regarding breach response planning.
  • Discuss where the information security role is headed over the next 3-5 years and beyond.
October 15, 2018
9:40am - 10:25am
America Ballroom

If you think of healthcare security as a three-act play, we are now well into the second act, and orgs that have not kept up (and there are many), face more danger than they likely imagine.

Key second act themes:

  • Healthcare orgs shift resources from prevention to incident response. It’s not if, but when you’ll be breached. To safeguard patient safety and business continuity, organizations must respond and recover quickly.
  • Information sharing has grown in importance.
  • Security leaders recognize the need to optimize existing technology rather than buy the next shiny object.
  • Automation and manage services help offset a shrinking talent pool.
  • Awareness training sits center stage.

The list goes on.

In this session, our expert speakers will discuss these and other key features of healthcare security’s second act. Importantly, they’ll provide guidance to help organizations stuck in the first act move to the second act and create a more resilient security posture.

As for the third act, they’ll have some thoughts on that, too.

Get Updates

Sign up to get the latest information on upcoming events.