Security - We're All in This Together

September 22, 6:00am, +00 - 8:00am, +00

OHSU Market Square Building 
1515 SW 5th Avenue, Suite 900
Portland, OR 97201


Non-member Price: 

We hear about large security breaches every day.  Whether it is Anthem, Community Health System (CHS), Premera Blue Cross or other security breaches in the news, they all have one thing in common: the cost of a breach in reputation and dollars is immeasurable.  Stopping the theft of PHI has become a critical focus for healthcare organizations.

Come join our panel presenting on various topics surrounding security, the need for it and how we can all work together.
The hope is that this conference will open the door to a deeper engagement from all organizations to begin developing an approach to reduce security weaknesses.


4:00-4:15 Networking & Refreshments
4:15 -5:45 Panel Discussion and Audience Q&A
5:45 -6:00 Networking

Bring your questions and concerns for an open forum discussion and interactive Q&A session with the panel and attendees.

Who should attend? Healthcare IT Executives, Security Officers, Compliance, Risk Management and Legal. This conference is approved for CE hours for use in fulfilling the continuing education requirements of the CPHIMS and the CAHIMS. 

Registration is $25 for HIMSS Members, $35 Non-HIMSS Members and $15 Students with Valid ID.

Thank you to LSN for their generous support.

Interested in sponsoring future HIMSS Events? Contact HIMSS Oregon, Sponsorship Chair, Rex Eads at 360-600-7193 or 



David Trepp, Owner, Info@Risk. A technology entrepreneur since 1989, David launched Info@Risk in January 1998 with the single purpose of thoroughly and accurately assessing clients' information system security postures.  Since then, he has led over 1,000 information security assessment engagements for satisfied customers across all major industries throughout the United States.  David has given dozens of presentations to audiences nationwide, on a variety of information security topics.  He has worked in Information Security with healthcare, governments, financial institutions, and utilities since 1998.


Greg Chupp, Senior Security Consultant, Providence Health and Services. Greg Chupp has over 21 years of IT experience with a focus on Security. Greg has been with Providence Health & Services for over 10 years currently in the role of Sr. Security Consultant managing Information Security for the Oregon region. 

Paul Tobia, Security on Demand, Director of Security Operations. Paul is responsible for developing the team, systems and best practices to deliver an impeccable customer support experience. Paul brings nearly 20 years of technical and management experience in information security to Security On-Demand. He has developed and managed information security programs in Critical Infrastructure industries and has provided strategy and vision for Fortune 500 companies. Before joining Security On-Demand, Paul was a Senior Principal Security Strategist for Symantec and the Information Security Officer for Sharp HealthCare. He has a B.S in Electrical Engineering from Kansas University and is a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), and has acquired the Certificate of Cloud Security Knowledge (CCSK). Paul will discuss how the use of behavioral analytics and other measures, has protected PHI for healthcare organizations throughout the country.

Closing remarks by HIMSS Advisory Council Member, John Jay Kenagy, PhD, FHIMSS  Senior VP/CIO and CISO, Legacy Health.  John Jay Kenagy, PhD, FHIMSS, is senior vice president and chief information officer at Legacy Health, serving in this role since March 2012. John has dedicated his career to the field of health information and technology. He has served as chief information officer for four outstanding organizations since 1996: Department of Veterans Affairs, Oregon Health & Science University, Providence Health & Services, and Legacy Health. Each organization and role has provided him the opportunity to grow and improve as a health information executive. A lifelong learner, John focused his doctoral research on ambulatory computerized provider order entry success. He remains on the faculty of OHSU, teaching a popular course on the business side of informatics.