InSecurity Podcast: Taylor Lehmann - So You Wanna Be a Healthcare CISO?


LLLLLAAADIIIEEEEEZZZZ aaaannnd EEEENNNNNTLLLLEMEEENNNN!!!!!
At six feet and one inches tall and weighing in at 230 pounds…                
Hailing from the University at Buffalo…
Managing an ecosystem made up of over 160 THOUSAND partners...
...and 120 MILLION patients…
From greater metropolitan Boston MAAAAASSSSAchusetts…
YOUR Chief Information Security Officerrrrrr…

Wouldn’t it be great if that’s how your day started every day as a CISO? Breaking news: being a CISO is a hard job. You don’t get many, if any, pro-wrestling style introductions.

So just how hard a gig is this? Our friends at Nominet Cyber Security released a report this summer called Life Inside the Perimeter: Understanding the Modern CISO. It shines a harsh spotlight on the often-brutal life of a CISO.

Here are three key stats to keep in mind whenever you heard the term CISO:

  • Nearly 70% of CISOs discovered malware that had been hidden in their networks for an unknown period of time.
  • Less than a third are in their job for more than three years.
  • Nearly 17% of CISOs are either medicating or using alcohol to deal with job stress.

To paraphrase Forrest Gump: Being a CISO is tough. Now, just to add fun and excitement, try being a CISO for an organization who is literally handling the technology that cures disease, heals the sick and saves lives.

This week on the Insecurity Podcast, Taylor Lehmann returns as the newly minted CISO at Athenahealth, and discusses what is involved in being an outgoing and incoming CISO in healthcare. He also chats about what happens when a CISO goes from managing 10,000+ to 100 MILLION+ patients. No pressure, right?

About Taylor Lehmann

Taylor Lehmann (@sidechannelsec) is the Vice President and CISO at Athenahealth. In a previous life, he was the CISO at Wellforce and Tufts Medical Center. He is also in demand as advisor, working with companies including IBM Security Global, Obsidian Security and Randori, among others.

Additionally, Lehmann is helping to carve the future with his advisory work with graduate students at MIT and Northeastern University.

Lehmann is also an expert in securing software development and delivery, and is on the boards of Gartner Evanta, the HITRUST Community Extension Program, the TPA Summit, and the Business Associate Council. Somehow, he still finds time to raise three kids and trade punches and throws while training in mixed martial arts.

About Matt Stephenson

Insecurity Podcast host Matt Stephenson (@packmatt73) leads the Broadcast Media team at BlackBerry, which puts him in front of crowds, cameras, and microphones all over the world. He is the regular host of the InSecurity podcast and host of CylanceTV.

Twenty years of work with the world’s largest security, storage, and recovery companies has introduced Matt to some of the most fascinating people in the industry. He wants to get those stories told so that others can learn from what has come before.