Cybersecurity Working Group Leadership Bios
Bryan Cline, Ph.D. is the HITRUST Vice President for Standards and Analytics
Bryan Cline provides thought leadership and guidance for the healthcare industry’s model implementation of the NIST Cybersecurity Framework. Responsibilities include a broad range of HITRUST risk management framework support such as requirements integration, control specification, and the development of standards, methods, processes and tools that healthcare organizations can use to facilitate the integration and assessment of the CSF in their information protection and cybersecurity programs. As a former senior advisor and VP of CSF Development and Implementation, he worked closely with the THSA to develop SECURETexas—the first state program of its kind certifying compliance with federal and state requirements for the privacy and security of health information—and is considered the ‘father’ of the HealthCare Information Security and Privacy Practitioner credential for spearheading its development with (ISC)2. Dr. Cline has also served as the Chief Information Security Officer for Catholic Health East and The Children’s Hospital of Philadelphia in addition to his 20+ years in the Department of Defense as an information systems and information security professional, including the CISO role at the Headquarters, Allied Air Forces Southern Europe. He’s spoken at multiple conferences and symposia on information security and privacy risk management in the healthcare industry and published articles and papers on risk management and security engineering in several journals and proceedings. Dr. Cline’s professional certifications include the CISSP-ISSEP, CISM, CISA, HCISPP, CIPP/US, CCSFP, NSA IAM/IEM, MCIATT and DoD’s CAP in project management.
Rice is Merck’s Vice President, Information Risk Management and CISO
Mr. Rice is responsible for Information Security, IT Regulatory Readiness, Quality/Technical Assurance, Business Continuity Planning and Policy, and has held multiple roles at Merck, as Executive Director, Information Risk Management & Compliance within the Enterprise Technology & Application Services organization. Prior to Merck, Mr. Rice served as Director of Global Information Security for Johnson & Johnson, and then in the consulting industry in a variety of roles. Mr. Rice holds a BS degree from West Point; and a Masters of Science degree from George Washington University.
Greg Garcia is Executive Director for Cybersecurity of the Healthcare Sector Coordinating Council (HSCC). Greg was appointed by President George W. Bush as the nation’s first Assistant Secretary for Cyber Security and Communications at the U.S. Department of Homeland Security from 2006-2009, where he led the National Cyber Security Division, the National Communications System and the Office of Emergency Communications. After DHS, Garcia led Bank of America’s external partnership strategy for cyber security and identity management, then served as executive director of the Financial Services Sector Coordinating Council (FSSCC). Greg most recently was executive vice president of SIGNAL Group, a Washington, DC-based public policy advocacy and strategic communications consulting firm. Earlier in his career, Greg served as professional staff for the U.S. House of Representatives Committee on Science, where he shepherded enactment of the Cyber Security Research & Development Act of 2002. He also led advocacy for the Information Technology Association of America, American Electronics Association, and 3Com Corporation, a Silicon Valley computer and communications networking company.