Architecting Virtual Security Teams: Lessons from Virtual CISO Programs

Webinar Overview

The talent shortage in cybersecurity has reached critical levels and healthcare organizations are struggling to find and retain qualified personnel. Many organizations are turning to innovative leadership and staffing models to deliver cyber programs.

Meditology’s team of experienced healthcare CISOs and Virtual CISOs has learned a great deal over the years about how to establish and maintain successful remote and hybrid cybersecurity programs at healthcare organizations.

In this session, we review best practices for establishing world-class cybersecurity programs using virtual or hybrid cybersecurity staffing models. Topics covered in this session include:

  • Cybersecurity talent shortages
  • Trends for movement to remote and hybrid security team models
  • What is a Virtual CISO (vCISO) and how does the model work?
  • Critical success factors for CISOs and Virtual CISOs
  • Hiring and retention strategies for the remote cyber workforce
  • Metrics, Key Risk Indicators, and Key Performance Indicators for high-performing healthcare cyber teams

Virtual CISO, VCISOAs the Chief Information Security Officer for Meditology, Jonathan Elmer works to identify risks within the organization and implement mitigating controls, manage multiple internal initiatives and work with several business units to contribute to the effectiveness of the Information Security Program. As a member of the ITRM team, Jonathan manages multiple client engagements with a focus on client satisfaction and deliverables.


Bethany Page-Ishii is an experienced security executive who leads the Security Risk Assessment service line. She served as the CISO for 5 years where she was responsible for leading the firm’s data security activities, including securing the firm’s SOC 2. She has helped contribute to getting many organizations HITRUST certified and has in-depth knowledge of NIST, HITRUST, SOC 2, HIPAA, HITECH and PCI.​