June 26, 2025

Episode #136. Not Just IT’s Problem Anymore: Cyber Just Crashed the Executive Table, with Sara Coverstone, Chief Compliance and Information Security Officer at Northern Arizona Healthcare

Episode #136. Not Just IT’s Problem Anymore: Cyber Just Crashed the Executive Table, with Sara Coverstone, Chief Compliance and Information Security Officer at Northern Arizona Healthcare

What happens when cybersecurity steps out from under IT and sits at the executive table?

In this episode, Sara Coverstone shares how moving cybersecurity out of IT and aligning it with risk functions improved board visibility and elevated cyber risks as a strategic priority. Emphasizing that "cyber safety is patient safety," she’s leading efforts in IAM, IoMT security, and AI governance, while encouraging a just culture, cross-team collaboration, and action over perfection.

Tune in and learn how Northern Arizona Healthcare restructured its approach to cyber risk, linking digital resilience directly to patient safety, and why starting small can drive big change!

For more information and ways to increase risk awareness and safety, visit us at ⁠⁠⁠⁠⁠⁠⁠⁠www.censinet.com⁠⁠⁠⁠⁠⁠⁠⁠.

Apple Podcasts podcast player badge
Spotify podcast player badge
Castro podcast player badge
RSS Feed podcast player badge
Apple Podcasts podcast player icon Spotify podcast player icon Castro podcast player icon RSS Feed podcast player icon

About Sara Coverstone:

Sara Coverstone is an executive with Northern Arizona Healthcare as the Chief Compliance and Information Security Officer. In and around Flagstaff, Arizona, NAH is a health system encompassing two hospitals and a wide range of ambulatory and emergency healthcare delivery services. Sara is responsible for the oversight of organizational compliance with State and Federal laws and regulations, as well as the privacy and security of data. Sara enjoys the constant change of healthcare regulations, the cybersecurity landscape, and the challenge of finding solutions to support the organization's mission.

Things You’ll Learn:

  • Aligning cybersecurity with risk and compliance functions, rather than burying it under IT, leads to stronger visibility and executive prioritization.
  • Framing cybersecurity as essential to patient safety helps engage clinical and operational teams in daily cyber diligence.
  • A centralized governance structure ensures responsible oversight of the organization's technology, AI, and data.
  • Starting small and improving over time is more effective than waiting for the perfect governance or reporting structure.
  • Promoting a just culture encourages incident reporting and enables faster, more effective cybersecurity responses.
  • Modernizing IAM systems, network infrastructure, and IoMT security is critical for operational resilience and clinical continuity.
  • Adopting AI in healthcare requires filtered, well-governed solutions to protect patient data and comply with regulatory requirements.

Resources:

  • Connect with and follow Sara Coverstone on LinkedIn.
  • Follow Northern Arizona Healthcare on LinkedIn and visit their website!