Welcome to Risk Never Sleeps!
Nov. 16, 2023

Episode #39: The Evolving Role of CISOs, with Jason Alexander, VP & Chief Information Security Officer at VCU Health

Episode #39: The Evolving Role of CISOs, with Jason Alexander, VP & Chief Information Security Officer at VCU Health

The COVID-19 pandemic changed the world forever, including the digital landscape and its risks.

In this episode, Jason Alexander discusses the changing responsibilities of CISOs, user-centric security, AI on phishing attacks, and the transformation of remote work due to the COVID-19 pandemic. He navigates challenges in healthcare cybersecurity, emphasizing real-time access removal, discussing achievements in system implementation, and advocating for continuous education and improved communication.

Tune in to learn more about the new normal in cybersecurity with a new paradigm of user-centric systems and AI threats!


For more information and ways to increase risk awareness and safety, visit us at www.censinet.com.

Apple Podcasts podcast player badge
Spotify podcast player badge
Castro podcast player badge
RSS Feed podcast player badge
Apple Podcasts podcast player icon Spotify podcast player icon Castro podcast player icon RSS Feed podcast player icon

About Jason Alexander:

As VCU Health’s Vice President and Chief Information Security Officer, Jason leads enterprise information security vision, strategy, and program to protect our information assets and technologies, both proactively and in response to threats. He is directly responsible for policies, standards, and oversight of all information security operations affecting the health system. Jason drives implementation for our vulnerability management, information security monitoring, operations, and threat intelligence programs.

Jason and his team foster and maintain more than security software and systems; they also foster and promote a security-aware culture. Team members must be aware of the genuine threats to our health system and the potential impact on our patients and our team members, and, importantly, the steps they can take to make sure they always make good decisions when accessing Personally Identifiable Information (PII) or doing such simple tasks as reading email and text messages.

Jason has a Bachelor of Science in Electrical Engineering and a Master of Science in Computer Engineering, focusing on Information Assurance. Before coming to VCU Health, he worked as an information security officer at the University of Iowa Hospitals, University of Virginia, and CarMax.

Things You’ll Learn:

  • CISO roles are evolving, emphasizing user-centric security as the cybersecurity landscape undergoes significant changes.
  • The increasing sophistication of phishing attacks is attributed to AI and large language models.
  • The healthcare industry faces ongoing challenges post-COVID, prompting the need for optimization in cybersecurity practices due to budget constraints.
  • VCU Health's successes include implementing a new ERP system, EHR, and an advanced identity and access management system, with real-time access removal as a significant security improvement.
  • A delicate balance is required between maintaining security measures and fostering collaboration, mainly when working with external vendors.

Resources:

  • Connect with and follow Jason Alexander and his Grumpy CISO blog on LinkedIn.
  • Follow VCU Health on LinkedIn.
  • Discover the VCU Health Website!