Lemons to Lemonade: Moving from a Ransomware Event to World-Class Cybersecurity: June 3

Date: June 03, 2025 Time: 10:00 AM

Location:

Webinar - 10-11:30 a.m.

Registration:

This program is complimentary for IHA-member hospitals and health systems.

Register Online

A quality cybersecurity program is a must-have in today’s healthcare environment. Incorporating lessons learned from the experiences of healthcare organizations that have lived through a cyber-attack—and emerged stronger—can help hospitals and health systems strengthen their cyber defense. During this webinar, information technology leaders from Enloe Medical Center in California will recount their multi-year journey from a 2020 ransomware attack to achieving a world-class, sustainable cybersecurity posture in 2025. You’ll learn how strategic investments and critical enhancements drove their success, including raising their assessment score from the National Institute of Standards and Technology into the high-performer range while consistently maintaining 100% HIPAA Security Rule compliance.

Objectives

At the conclusion of this program, participants will be able to:

  • Outline key lessons from a real hospital ransomware incident.

  • Identify and prioritize key improvement activities following a ransomware incident.

  • Strengthen staff retention strategies and leadership buy-in in cybersecurity.

Who Should Attend

This webinar is designed for hospital leaders and teams responsible for cybersecurity and emergency preparedness, including but not limited to: 

  • Information technology leaders

  • Emergency preparedness teams

  • Clinical and department educators

  • Risk management and quality improvement leaders

  • Emergency department and inpatient unit leads

  • Operations staff

  • Facilities managers

  • Executive leaders

Speakers

Tom Osteen
Chief Information Officer and Chief Information Security Officer, Enloe Medical Center
Osteen is a senior IT/business leader with 25 years of experience in a variety of industries, including healthcare, financial services and aerospace. He is currently CIO and CISO for Enloe Medical Center in Northern California. His experience includes three prior stints as a healthcare CIO: for the California Dental Association, Kaiser Permanente’s Central Valley Service Area and Emanual Medical Center. Osteen has a broad and deep technical background, including software and network engineering, data analytics, formal process methodologies, and cybersecurity. His unique experience includes building and opening a brand-new Kaiser Hospital, honing his technical skills in a world-class research and development environment (the Maui Space Surveillance Site and Maui High Performance Computing Center), and supporting large-scale communications, space, and missile warning systems for the Cheyenne Mountain Space Force Station and U.S. Space Command. Osteen is a former Air Force Officer, a current member of the College of Healthcare Information Management Executives and a senior fellow of the American Leadership Forum.

Ryan Cox
Manager of Cybersecurity, Enloe Medical Center
Cox brings 16 years of information technology experience to his cybersecurity role at Enloe Medical Center. Much of his expertise comes from his work in e-commerce space, where he was head of IT security initiatives for the last decade. Starting out in DevOps, Cox cut his teeth on application health monitoring, alerting and incident response before progressing to management within IT. He has successfully led teams in systems, database, network, helpdesk, DevOps and cybersecurity.

Register online