Full-Time
Vice President Chief Information Security Officer
Posted on 5/16/2026
Sutter Health
10,001+ employees
Not-for-profit integrated healthcare network managing hospitals
Compensation Overview
$393.1k - $531.9k/yr
Company Does Not Provide H1B Sponsorship
Oakland, CA, USA + 1 more
More locations: Sacramento, CA, USA
In Person
 IT & Security (1) |
|---|
- Bachelor’s degree in Information Technology, Cybersecurity, Healthcare Administration, or related field; Master’s degree preferred
- 10+ years of progressive leadership in information security and risk management, with 5+ years in healthcare or another highly regulated industry
- Demonstrated success implementing enterprise cybersecurity programs in a multi-hospital health system, payer, or large healthcare delivery network
- Deep knowledge of HIPAA, HITECH, CMS, OCR enforcement, FDA guidance for medical devices, and healthcare-specific risk management frameworks
- Expertise in EHR security (Epic preferred), identity and access management, cloud security, and medical device security
- Strong business and clinical acumen; ability to align security with patient care priorities
- Exceptional communication skills with the ability to present to clinical leaders, executives, and boards
- Relevant certifications strongly preferred: CISSP, HCISPP, CISM, CISA, or CHPS
- Develop and implement a multi-year information security strategy that aligns with organizational priorities, digital transformation goals, and regulatory requirements
- Advise the CEO, Chief Digital Officer, Chief Operating Officer, and Board of Directors on emerging cyber threats, risks to patient care, and mitigation strategies
- Lead enterprise participation in healthcare security coalitions, information sharing groups (e.g., Health Information Sharing and Analysis Center), and public–private partnerships
- Establish and maintain a security governance program based on healthcare-aligned frameworks (NIST CSF 2.0, HITRUST CSF, HICP, HIPAA/HITECH)
- Drive enterprise risk assessments and develop mitigation plans for cybersecurity, privacy, and clinical safety risks
- Ensure compliance with HIPAA, HITECH, CMS, FDA (for medical device security), and state privacy regulations
- Oversee security audits, penetration tests, and third-party/vendor risk assessments, ensuring remediation of findings
- Protect the Electronic Health Record (EHR), patient-facing portals, and digital health platforms against compromise, downtime, or data loss
- Partner with Clinical Engineering and Biomedical teams to secure medical devices and Internet of Medical Things (IoMT)
- Lead preparedness for ransomware, phishing, insider threats, and advanced persistent threats with an emphasis on minimizing patient safety impact
- Oversee disaster recovery and business continuity planning in alignment with emergency preparedness and patient safety frameworks
- Partner with Digital, Compliance, Privacy, Clinical, and Operational leaders to embed security into new initiatives, system design, and patient engagement platforms
- Build and lead organization-wide security awareness and phishing-resistance training tailored to caregivers, clinicians, and administrative staff
- Serve as the public face of information security during regulatory reviews, patient safety investigations, and stakeholder engagements
- Recruit, develop, and lead a high-performing healthcare cybersecurity team across areas such as threat intelligence, incident response, IAM, and risk management
- Promote a culture of accountability, clinical safety, and innovation in cybersecurity practices
- Provide coaching and mentoring for next-generation security leaders
- Master’s degree preferred
- CISSP
- HCISPP
- CISM
- CISA
- CHPS
Sutter Health is a not-for-profit, integrated healthcare network serving Northern California. It operates a broad system of medical facilities—including hospitals, outpatient centers, and research institutes—to provide care for everything from routine checkups to complex surgeries. The network uses digital health tools and conducts clinical research to improve patient outcomes, and it reinvests earnings back into community health initiatives, medical research, and facility improvements. Revenue comes from patient services, insurance reimbursements, and government health programs. Its goal is to deliver high-quality, patient-centered care while expanding preventive care and wellness programs to improve long-term community health.
Company Size
10,001+
Company Stage
Grant
Total Funding
$4.2M
Headquarters
Sacramento, California
Founded
1981
Simplify's Take
What believers are saying
- $175 million Stevens gift funds a new Santa Clara medical school joint venture.
- SanLuca partnership extends Sutter Sync with AI-led behavioral health for hypertension patients.
- Research on opioids, cardiovascular risk, and cancer behavioral health can improve protocols.[1]
What critics are saying
- Inpatient ambient AI still has barriers, risking slower adoption and weaker productivity gains.
- Epic-based AI draft replies and order entry create patient-safety and documentation-error exposure.
- Medical school accreditation delays can postpone opening and weaken recruitment expectations.
What makes Sutter Health unique
- Integrated Northern California system spans hospitals, clinics, imaging, surgery, and home health.[3][6]
- Real-world research is embedded into care delivery, with nine HCSRN oral presentations.[1]
- Sutter is pairing clinical operations with AI tools, including inpatient ambient scribe deployment.[5]
Help us improve and share your feedback! Did you find this helpful?
Your Connections
People at Sutter Health who can refer or advise you
Benefits
Health Insurance
Dental Insurance
Vision Insurance
Life Insurance
Disability Insurance
Growth & Insights and Company News
6 month growth
↓ -5%1 year growth
↓ -5%2 year growth
↓ -5%Ascension Saint Thomas Foundation announces new leadership appointments in Middle Tennessee. Fahad Tahir, MAS, MBA, FACHE, President and CEO of Acsension Health St. Mary%27s Hospital, Tennessee - Acsension Health St. Mary%27s Hospital, Tennessee Jun 9, 2026 The Ascension Saint Thomas Foundation announced several key leadership appointments on June 9 to advance its mission of improving the health and well-being of communities served by the health system. The foundation said these appointments are intended to strengthen philanthropic support, deepen donor engagement, and expand community partnerships across Middle Tennessee. Greg Walaitis was named vice president of the Ascension Saint Thomas Foundation in May. As the senior executive of the foundation, he will oversee philanthropic strategy, operations, and community development focused on raising and stewarding support for Ascension Saint Thomas hospitals and facilities, clinical programs, and patient care initiatives. In his role, Walaitis will work closely with leadership, physicians, and donors to strengthen connections between community support and the health system's most critical needs. The foundation said this would help advance priorities that improve care delivery and expand services across the region. The foundation also welcomed April Posey as executive director of corporate partnerships in February. She leads corporate engagement and partnership development efforts that advance the foundation's philanthropic mission and oversees signature fundraising events such as the Seton Gala, Rock the Cradle, and Good Health Classic. Through these efforts, Posey works to strengthen community partnerships and increase engagement in support of Ascension Saint Thomas across Middle Tennessee. Walaitis brings more than 25 years of experience in development and philanthropy across health care and academic institutions. Most recently he served as chief development officer for Renown Health in Reno, Nevada, where he led philanthropic efforts supporting what was described as "the region's largest locally owned and governed not-for-profit health system." During his tenure at Renown Health, he helped lead a $125 million initiative for a new Cancer and Children's Hospital as well as securing transformational gifts including major support for cancer institutes, kidney transplant centers, children's hospital NICU/PICU services - and launching initiatives supporting music therapy, breast health services, and advanced cardiac care technologies. Before joining Renown Health, Walaitis held executive foundation leadership roles with Sutter Health and Saint Agnes Medical Center in California where he built strong physician partnerships, expanded grateful patient programs, and strengthened philanthropic strategy to support mission-driven healthcare systems. April Posey brings more than 18 years of experience in development and corporate philanthropy across healthcare and arts organizations including leadership roles with Tennessee Performing Arts Center (TPAC), Change Healthcare, and American Heart Association. Most recently, she served as director of corporate partnerships for TPAC where she led corporate strategy and advanced community engagement initiatives through strategic sponsorships and cross-sector collaboration. Prior to TPAC, she was corporate giving director for Change Healthcare where she led national corporate philanthropy, employee engagement, volunteerism, and nonprofit partnership initiatives across the United States. The foundation said throughout her career, Posey has built a reputation for creating collaborative partnerships that align business and community priorities to generate lasting impact.
Sutter Health expands cardiac and cancer care. * written by michael singer * apr 15, 2026 updated apr 15, 2026 * 0. Sutter continues to grow its regional footprint in Castro Valley to deliver specialized, compassionate care in a more accessible, community-based setting. * Photos courtesy of Sutter Health Sutter continues to grow its regional footprint in Castro Valley to deliver specialized, compassionate care in a more accessible, community-based setting. * Photos courtesy of Sutter Health A new specialty care center in Castro Valley is aiming to make it easier for residents to access advanced heart and cancer treatment close to home. Officials from Sutter East Bay Medical Foundation and Sutter East Bay Medical Group recently celebrated the opening of the Castro Valley Cardiovascular and Oncology Care Center, located on Lake Chabot Road. The facility brings cardiology and oncology services together under one roof, an approach designed to improve coordination and convenience for patients and families. The new center reflects a broader effort by Sutter Health to expand access to specialized care in community settings, reducing the need for patients to travel long distances for treatment. By offering services locally, healthcare leaders say patients can spend less time commuting and more time focusing on recovery. "This is an important step in bringing high-quality cardiology and oncology services directly into the community," said Genea Wilson, CEO of Sutter East Bay Medical Foundation, during a ribbon-cutting ceremony. She noted that receiving care close to home can significantly ease the burden on patients and their families. A key feature of the new facility is its integrated care model. By housing heart and cancer specialists in the same location, providers can collaborate more closely on patient care, leading to more coordinated treatment plans and potentially better outcomes. Dr. Rob Nordgren, chief medical officer for Sutter's Greater San Francisco and East Bay Division, said the center represents a shift toward a more comprehensive, patient-focused approach. He emphasized the importance of combining advanced diagnostics, modern technology, and a whole-person view of health to guide treatment decisions. The center also works closely with nearby Eden Medical Center, helping ensure continuity of care from diagnosis through treatment and follow-up. For cardiology patients, the facility emphasizes prevention and early detection. Physicians say that by identifying cardiovascular risks earlier, often before symptoms develop, they can help patients make lifestyle changes and receive treatment sooner, potentially avoiding more serious complications. Cancer patients may also benefit from the center's location. Receiving oncology care locally can reduce travel time and stress, especially for those undergoing frequent treatments. Doctors say this convenience can improve both the patient experience and overall care coordination. Healthcare leaders credited the project's success to collaboration among physicians, nurses, staff, and community partners. They say the new center is part of a larger plan to expand services throughout the East Bay.
American hospitals are rolling out AI chatbots in patient portals as more people seek health advice from large language models. Hartford HealthCare and K Health's PatientGPT is expanding to tens of thousands of patients this week, whilst Epic's Emmie chatbot is being deployed by systems including Sutter Health and Reid Health. A KFF poll found one in three American adults have used AI chatbots for health information, with 19 per cent citing inability to afford care. However, a Nature Medicine study showed chatbots correctly identified medical conditions only 33 per cent of the time when users created their own prompts, compared with 95 per cent accuracy in controlled scenarios. Experts question whether chatbots improve patient outcomes, with concerns about monitoring, liability and whether this addresses underlying care gaps in America's underperforming healthcare system.
Lawsuit filed over AI recording doctor-patient visits. health April 12, 2026 health AI patient privacy lawsuit A class-action lawsuit has been filed against Sutter Health and MemorialCare, alleging unauthorized recording of doctor-patient conversations via Abridge AI. What happened. The lawsuit, filed in federal court in San Francisco, involves patients who received medical care at Sutter and MemorialCare facilities within the last six months. The core allegation centers around the use of Abridge AI, which the plaintiffs claim captured and processed their confidential medical communications without proper notification or consent. The suit specifically argues that patients were not clearly informed their conversations would be recorded by an AI platform, transmitted outside the clinic, or processed by third-party systems. Plaintiffs contend that the recordings contained sensitive and personally identifiable medical information, including medical histories, symptoms, diagnoses, medications, and treatment plans. These recordings, they assert, represent a breach of patient privacy and confidentiality. The lawsuit highlights that the information was captured during confidential medical consultations, implying a violation of the trusted doctor-patient relationship and potentially violating HIPAA regulations, although the lawsuit does not directly state this. Further details about the number of plaintiffs involved are still emerging. Abridge AI's technology captures, transcribes, and summarizes conversations between patients and doctors, turning them into clinical notes. It has been rapidly adopted by major healthcare providers nationwide, including Kaiser Permanente, the Mayo Clinic, and Duke Health. The lawsuit argues this widespread deployment amplifies the potential impact of privacy violations and highlights the urgent need for greater transparency and regulation around the use of AI in healthcare settings. News outlets reported that a member of the press has previously consented to this practice for personal medical appointments, showing how widespread the technology is. Why it matters. The lawsuit raises significant questions about patient privacy and the ethical implications of using AI in healthcare. It underscores the importance of obtaining informed consent before recording or processing sensitive medical information. As AI becomes increasingly integrated into healthcare, it's critical to balance technological advancements with the need to protect patient rights and maintain the integrity of the doctor-patient relationship. This case could set a precedent for how healthcare providers utilize AI technologies and manage patient data. Abridge AI, valued at $5.3 billion as of June 2025, markets its product as a tool to improve outcomes for clinicians, nurses, and revenue cycle teams. However, the lawsuit brings to light the potential downsides of this technology, particularly regarding privacy and security. The outcome of this legal challenge could influence the future of AI adoption in healthcare and push for stricter regulations around data privacy and informed consent. Further legal challenges may arise as patients become more aware of how their data is being collected and used. What comes next. Sutter Health has acknowledged awareness of the lawsuit and stated its commitment to patient privacy and data security, adding that technology used is carefully evaluated and implemented according to applicable laws and regulations. MemorialCare declined to comment on pending litigation. Abridge AI has not yet responded to requests for comment. The legal process will now proceed, potentially involving discovery, where evidence is gathered, and further legal arguments from both sides. The court will need to determine whether the healthcare providers adequately informed patients about the use of Abridge AI and whether the collection and processing of patient data complied with relevant privacy laws. Depending on the outcome, healthcare providers may need to revise their policies and procedures regarding the use of AI technologies and patient data. This case is likely to be closely watched by healthcare professionals, technology companies, and patient advocacy groups alike. Related topics on gab.ae: ai · health Faq. What is Abridge AI? What are the main allegations in the lawsuit? What did Sutter Health say about the lawsuit?
A national stage for the Future of Medicine. Apr 8, 2026 Julia Jones Last week Sutter Health joined more than 3,000 medical students, educators and health care leaders in Pittsburgh for the 2026 Annual Medical Education Conference, a premier national convening of future physicians. As the conference's leading sponsor, Sutter's presence reflected its continued commitment to strengthening the physician workforce and supporting the next generation of caregivers across the communities it serves. Hosted by the Student National Medical Association, AMEC brings together aspiring physicians from across the country for several days of workshops, keynote discussions and networking. The focus: leadership, advocacy and the future of medicine. This year's theme, "Bridging Generations with Hope: Illuminating the Voices and Vision of the Future of Medicine," set the tone for conversations about how emerging physician leaders will shape and lead care in the years ahead. Meeting communities where they are Throughout the conference, Sutter's Graduate Medical Education team connected with students and faculty, sharing how the organization is expanding physician training opportunities across Northern California. "Being at AMEC is incredibly energizing," said Dr. Dineen Greer, vice president and designated institutional official for GME at Sutter Health. "You see firsthand the passion and purpose these future physicians bring to medicine. It reinforces why our role in training and supporting them matters for the patients and communities who will depend on their care." From conversation to action Sutter contributed to the conference through two featured workshops designed to support learners at key moments in their training. Dr. Linda Herman, emergency medicine physician and associate program director for the Sutter Roseville Medical Center Emergency Medicine Residency Program led a session focused on building foundational clinical skills, including how to read EKGs, and offered practical insights for medical students navigating their training and career paths. A second session, led by Dana Beckton, vice president and chief inclusion and belonging officer, Dr. Greer and physician leader Dr. Adora Matthews, director of the Sutter Rehabilitation Institute informed students how to speak up, share ideas and advocate for patients during their training. The session explored how physicians can lead with purpose, advocate for patients and contribute to meaningful change within their organizations and communities. On the ground at AMEC Sutter residents played an active role at AMEC 2026, connecting with students, sharing their experiences and representing the next generation of physician leaders. "Attending AMEC 2026 was a fulfilling experience centered on mentorship, representation and community, especially reconnecting with students from the previous year," said Dr. Abiolah Telesford, a third-year internal medicine resident at Sutter Roseville Medical Center. "I shared my training experience, promoted inclusion, and facilitated an EKG workshop. Connecting with like-minded future physicians was inspiring and reinforced my commitment to mentorship and education." "Being able to table and talk about Sutter Health with the next generation of physicians during AMEC was a full-circle moment for me," said Dr. Anastacia Azor, a first-year surgery resident at Sutter Roseville Medical Center. "I remember being in their shoes not that long ago - connecting with programs, attending sessions and falling in love with Sutter Health for the first time. It's a special opportunity to make an impact on these students during a pivotal time in their journey and to have the chance to potentially meet my future co-residents." Participation in AMEC is one of many ways Sutter continues to invest in the future of medicine. The organization is building pathways for learning, mentorship and leadership development, extending beyond the classroom into real-world care. For more information, visit sutterhealth.org/education/gme.