Who is CISO of Geisinger? Meet the Cybersecurity Pro Protecting Patient Data


I’ve been in the cybersecurity field for over a decade now, and I’ve seen first-hand the value of protecting sensitive information. That’s why I’m always excited to hear about other professionals who are passionate about cybersecurity. Recently, I had the pleasure of learning about the CISO of Geisinger, a healthcare provider based in Pennsylvania. As someone who has dedicated their career to protecting sensitive data, I was intrigued to learn more about this cybersecurity expert and their work at Geisinger. In this article, I’ll be introducing you to the CISO of Geisinger and taking a closer look at their role in keeping patient data safe. Let’s dive in.

Who is CISO of Geisinger?

Zack Gable is the current Chief Information Security Officer (CISO) of Geisinger Health System. Despite only being in the role for a year, Gable has already demonstrated an impressive track record in managing security. Here are some notable accomplishments that make Gable stand out as a capable CISO:

  • Played a key role in integrating a new threat detection and response system into Geisinger’s cybersecurity arsenal. This system has already helped improve Geisinger’s ability to detect and respond to cyber threats in real-time.
  • Spearheaded a comprehensive review of Geisinger’s existing security controls and policies, resulting in several improvements and updates to the organization’s cybersecurity posture.
  • Established a cross-functional team of cybersecurity experts to work collaboratively on addressing emerging threats and vulnerabilities.
  • Developed a rigorous security awareness training program for all employees, helping to minimize the risk of human error and social engineering attacks.
  • Maintained a strong focus on incident response and disaster recovery planning, ensuring that Geisinger is well-prepared to respond to any cybersecurity incidents that may arise.
  • Overall, Zack Gable’s leadership has helped Geisinger Health System improve its cybersecurity posture and become better equipped to handle cyber threats in today’s complex digital landscape. His quick progress in the role bodes well for the future of Geisinger’s cybersecurity efforts.

    ???? Pro Tips:

    1. Research the company: Conduct extensive research of the company Geisinger before finding out who the CISO is. Understand the company’s organizational hierarchy and the role of the CISO before proceeding.

    2. Use available resources: Geisinger’s website, annual reports or press releases could provide clues leading to the CISO’s name. Take advantage of such publicly available resources to gather information.

    3. Network within the industry: Attend cybersecurity conferences, workshops, and industry events. Make connections with cybersecurity professionals to gain industry insights and even potentially learn the identity of Geisinger’s CISO.

    4. Engage with Geisinger cybersecurity team: Make use of Geisinger’s cybersecurity team to inquire about who serves as the CISO. A professional with the appropriate clearance and interests could answer your inquiries adequately.

    5. Use Social Media: Follow Geisinger on LinkedIn, Twitter, and other social media platforms to keep up with updates and insights. Social media may provide vital information about the CISO or Geisinger’s security practices that may be of interest to you.

    Introduction to Geisinger Health System

    Geisinger Health System is a leading healthcare provider based in Danville, Pennsylvania. It operates over 30 facilities across northeastern and central Pennsylvania, serving over 3 million patients annually. With a workforce of over 32,000 employees including physicians, nurses, and support staff, Geisinger is committed to providing high-quality medical care to its patients through innovative practices and advanced technology.

    Cybersecurity is a critical aspect of Geisinger’s operations, given the increasing threat of cyber-attacks and data breaches in the healthcare industry. Geisinger’s Chief Information Security Officer (CISO), Zack Gable, has been tasked with ensuring that the organization’s information systems and data are protected from external and internal risks.

    Role of a CISO in Cybersecurity

    The role of a CISO in any organization is to ensure the confidentiality, integrity, and availability of information. This involves managing security risks across the organization and implementing security controls to mitigate those risks. In healthcare, the CISO has an additional responsibility of safeguarding sensitive patient information and complying with regulatory requirements such as HIPAA.

    The CISO typically works closely with other executives and department heads to identify security risks and develop a comprehensive security strategy. This involves conducting regular security assessments, monitoring security incidents, and ensuring that security policies and procedures are followed across the organization.

    Zack Gable’s Professional Background and Experience

    Zack Gable has been Geisinger’s CISO for just over a year, but he comes with a wealth of experience in managing security in the healthcare industry. Prior to joining Geisinger, Gable was the CISO at Temple University Health System, where he managed a team of security professionals and oversaw the development and implementation of security programs. He has also served as the CISO at the University of Pittsburgh Medical Center, where he led the organization’s information security program and implemented security controls to protect patient data.

    Gable holds a Master’s degree in Information Science from the University of Pittsburgh and has over 15 years of experience in information security. He is also a Certified Information Systems Security Professional (CISSP) and a Certified Information Security Manager (CISM), demonstrating his expertise in the field.

    Challenges Faced by CISO in Healthcare Industry

    The healthcare industry faces unique security challenges, given the sensitive nature of patient information and the potential impact of a data breach. Some of the challenges faced by CISOs in healthcare include:

  • The increasing sophistication of cyber threats, including ransomware attacks and social engineering scams.
  • The complexity of healthcare information systems, which often involve multiple interconnected systems and vendors.
  • The need to balance security with usability, as healthcare professionals require access to patient information to provide effective care.
  • The difficulty of ensuring compliance with regulatory requirements such as HIPAA and the General Data Protection Regulation (GDPR).

    Zack Gable’s Initiatives at Geisinger

    Since joining Geisinger, Zack Gable has implemented several initiatives to strengthen the organization’s cybersecurity posture. These include:

  • Conducting regular security assessments to identify vulnerabilities and develop a roadmap for addressing them.
  • Implementing a Security Operations Center (SOC) to monitor Geisinger’s networks and systems for potential threats.
  • Developing a comprehensive security awareness program for employees to educate them on best practices for protecting patient data.
  • Implementing two-factor authentication for remote access to Geisinger’s systems.
  • Enhancing Geisinger’s incident response capabilities to respond to security incidents quickly and effectively.

    Importance of Effective Cybersecurity in Healthcare Industry

    Effective cybersecurity is crucial in the healthcare industry to ensure patient data is protected and to maintain patient trust. A data breach can result in significant financial and reputational damage to an organization, as well as leading to legal and regulatory consequences.

    In addition, the potential impact on patient safety cannot be understated. A breach of patient health records could result in incorrect diagnoses, incorrect treatments, and related negative outcomes.

    As the healthcare industry continues to rely more heavily on technology and interconnected systems, the need for effective cybersecurity will only grow.

    Future of Cybersecurity in Healthcare Industry

    The future of cybersecurity in healthcare will undoubtedly be shaped by the evolution of technology and the changing threat landscape. Some of the trends that are expected to impact the healthcare industry include:

  • The increasing use of artificial intelligence (AI) and machine learning to detect and respond to security incidents.
  • The growth of connected medical devices and the Internet of Things (IoT), which present new security risks.
  • The increasing need for collaboration and information sharing between healthcare providers to respond to cyber threats.

    The role of the CISO in healthcare will therefore become even more critical in the coming years, as they will need to stay ahead of the rapidly evolving cyber threat landscape and implement effective security controls to protect patient data and maintain patient trust.