October 2025 Chapter Meeting
Join us on-site in New York City or Long Island, or virtually, for our next Chapter Meeting on October 22, 2025 featuring:
- A panel with current technology executives on cybersecurity trends and challenges in the Healthcare industry;
- A presentation on a real world example of governing and securing AI adoption in the financial services industry.
The registration link can be found below. Members can get their promo codes by logging into the Chapter website and going to their “My Page“. Sponsor promo codes have been previously distributed. Non-members and the public are invited to attend and can register for a nominal fee or join the Chapter. Our annual membership is $40 for professionals and $15 for students. Meeting fees are waived for members. This event will qualify for two Continuing Professional Education (CPE) credits.
Membership in the Chapter is open to all cybersecurity professionals and students. If you are not already a member, please visit our membership page for more information.
Agenda:
5:00 – 6:00 In-Person Registration, Networking and Event Setup
6:00 – 6:10 Welcome and Chapter Business
6:10 – 7:00 Session 1: From the ER to the SOC: Safeguarding Healthcare Data Today, Tomorrow & Beyond – held onsite on Long Island
7:10 – 8:00 Session 2: Hands-On Gen AI Security – presented onsite in New York City
8:00 – Long Island Prize Winner drawing and winners!
⚠️For those planning to attend the event onsite in New York City: Due to building security requirements, we will be closing ticket sales to our New York City site at 12:00pm one day before the event. If you do not register to attend the event in New York City before ticket sales close, you may be prevented entry by building security.
But wait, there’s more! Be one of the first 50 registered attendees, in person, on Long Island, for a chance to win 1 of 5 solo stoves we are giving away! Must be present to win; Your registration will serve as your entry.
Topic Summary: From the ER to the SOC: Safeguarding Healthcare Data Today, Tomorrow & Beyond
The healthcare sector is experiencing a seismic shift in how clinical and operational data is generated, processed, and protected. From AI-assisted diagnosis to synthetic datasets, patient wearables to ambient intelligence in the exam room, the promise of smarter healthcare is undeniable—but so are the risks.
This expert panel brings together healthcare CISOs and medical leaders to examine the cybersecurity, compliance, and coordination challenges surrounding the protection of hospital and patient data in modern health systems, while technology continues to grow and expand. Expect a candid discussion on:
- Balancing innovation with interoperability, trust, and clinical integrity
- Key healthcare cyber risks and the specific trends/threats facing healthcare
- Adoption of AI/ML and related risks to privacy, etc.
- Cyber insurance considerations, and medical device security
- The NYS-DOH Cybersecurity for Hospitals regulation (ie – legal landscape facing healthcare)
Moderated by Michael Hiskey, CSO of the CxO Security Forum, this panel features top security and technology leaders from major regional hospital systems—exploring how they safeguard sensitive data, maintaining compliance, and defending against evolving threats.
Join the ISC2 NYC & Long Island Chapter for a compelling session that brings together CISOs, cybersecurity practitioners, and compliance leaders at the forefront of one of healthcare’s most complex transitions.
Panel Moderator: Michael Hiskey, Founder, CxO Security Forum | Author | Speaker | Executive Strategist
Michael Hiskey is an author, blogger, and speaker with more than 20 years of experience in enterprise B2B strategy across cybersecurity, fintech, data, and AI. His work has appeared in Forbes, InformationWeek, WSJ.com, ITProPortal, and he has been featured on CNBC and C|Net.
A seasoned executive, Michael has held Chief Marketing Officer and Chief Strategy Officer roles at companies including Avanan, Socure, Semarchy, Trifacta, and Data Connectors, as well as leadership positions at IBM and MicroStrategy. He has lived and worked on three continents, managing global teams and driving measurable ROI for complex organizations.
Michael is the founder of the CxO Security Forum, a community-led network reinventing how executives connect for education, mentoring, and peer exchange. Having moderated and organized hundreds of cybersecurity conferences, roundtables, and executive forums, he is dedicated to creating practitioner-first environments that foster collaboration between industry, government, and academia.
He holds an MBA from Columbia Business School, and lives on Long Island with his wife and two daughters.
Panelist: Kathy Hughes, VP, Chief Information Security Officer – Northwell Health
Kathy Hughes is the VP, Chief Information Security Officer at Northwell Health. In this position, she is responsible for overseeing the IT security technology, risk management, security governance and disaster recovery teams. She also has responsibility for developing and implementing the IT security policies and standards and ensuring that appropriate tools and metrics are in place to allow for effective monitoring, measurement and control of IT security risk.
Prior to joining Northwell Health, Kathy worked at Allscripts where she managed the Infrastructure Services Operations and Engineering teams for North Shore-LIJ (now Northwell Health). Before that, she worked at The Estée Lauder Companies where she was responsible for overseeing the Global Data Network and Infrastructure Services Support teams and at Stony Brook University Hospital where she had a similar role.
Kathy graduated from Molloy College where she received her B.A. degree in Business Management with a double minor in Economics and Computer Science. She subsequently earned her M.B.A. in Business Computer Information Systems from Hofstra University and obtained various technical and professional certifications including CISSP, PMP and ITIL.
Panelist: Keith Duemling, Vice President & Chief Information Security Officer – Catholic Health
Keith Duemling is a transformative cybersecurity executive with 20 years of experience architecting enterprise-grade security programs across dynamic healthcare environments. As Vice President and Chief Information Security Officer at Catholic Health Long Island, he leads a cybersecurity strategy that accelerates digital transformation while reducing operational and clinical risk. His modernization agenda is grounded in business-integrated security, advancing trust, resilience, and regulatory alignment through frameworks like the NIST Cybersecurity Framework (CSF).
Keith leads a portfolio of high-impact initiatives, including Zero Trust architecture, identity threat detection, deception technologies, and third-party risk governance, ensuring cybersecurity acts as a business enabler, not a constraint. His leadership embeds a resilient security culture that supports Catholic Health’s mission, protects clinical excellence, and sustains long-term digital innovation. Previously, Keith held cybersecurity leadership roles at the Cleveland Clinic, where he directed global cyber operations and led threat defense across clinical, research, and administrative ecosystems. Earlier, as Information Security Officer for a regional system affiliated with University Hospitals, he built foundational security programs that strengthened enterprise risk posture and safeguarded protected health data at scale.
Panelist: Dr. Jason Lazar, – Executive Vice Dean, College of Medicine; Chair, Department of Medical Education SUNY Downstate Health Sciences University: Downstate Health Sciences University
Dr. Jason Lazar is a leading figure in digital health, serving as Executive Vice Dean and Chair of the Department of Medical Education at SUNY Downstate College of Medicine. He is recognized as an academic cardiologist, educator, and public health advocate who actively integrates digital health strategies into medical education and clinical practice.
Dr. Lazar has championed the use of digital tools and strategies to enhance cardiovascular wellness and value-based care. He has chaired sessions and presented at numerous digital health conferences and organized major events including the Digital Health Summit at SUNY Downstate, emphasizing the importance of digital innovation in healthcare delivery and education.
With a background in non-invasive cardiology and a Master of Public Health from Columbia University, Dr. Lazar’s research and teaching focus on improving health outcomes for underserved populations through technology-driven approaches. He oversees the expansion of simulation-based learning and supports faculty and students in adopting digital solutions for clinical training and patient care. He has provided medical care for patients in 11 countries spanning 4 continents. Dr. Lazar’s work reflects a commitment to leveraging digital health to address health disparities, advance medical education, and foster a positive, inclusive learning environment for future healthcare professionals.
Panelist: Andy Hoffman, Chief Information Security Officer & HIPAA Security Officer – Stony Brook Medicine
Andrew Hoffman is the Chief Information Security Officer and HIPAA Security Officer at Stony Brook Medicine, where he brings more than 30 years of experience in information security, compliance, and risk management. Known for his inclusive leadership style, Andrew has driven multi-million-dollar security investments and led global compliance initiatives across healthcare, finance, and technology sectors. His work has spanned frameworks including HIPAA/HITRUST, PCI-DSS, ISO 27001, and NIST, with a focus on building resilient programs that align with organizational strategy. At Stony Brook Medicine, he leads efforts to protect sensitive data while enabling innovation in patient care and clinical research.
Topic Summary: Hands-On Gen AI Security
This is a summary of an approach taken at a financial services firm with regard to AI Governance and AI Security. Every firm has AI FOMO and is looking to adopt Gen AI in a safe and secure manner. Implementing strong AI Governance and AI Security will increase the speed of AI adoption. AI Governance and AI Security is a fast evolving space.
Speaker: Interstellar Wagner, Cybersecurity Executives
Hands-On Cybersecurity Executive. Information Security, Cybersecurity, and Privacy operator fr 20+ years. Experience with penetration testing, vulnerability management, IAM, forensics & incident response, GRC, and DevSecOps. Focused on Gen AI security for the last two years.