As the healthcare sector continues to expand its reliance on digital solutions expand its reliance on digital solutions, the risk of cyber incidents causing a disruption to patient care are increased.. The HSRS 2025 conference, hosted by NKST, will focus on moving beyond compliance-driven security to a proactive and resilient approach. Healthcare organizations face unprecedented cybersecurity threats, regulatory pressures, and digital transformation challenges. HSRS 2025 aims to equip industry professionals with the latest strategies and technologies to protect biomedical research networks, enhance privacy governance, manage third-party risks, protect patient data, and security adopt AI and cloud solutions. The summit will provide an in-depth exploration of the cybersecurity landscape in the healthcare sector, ensuring that organizations remain secure and adaptable in an ever-evolving digital environment.
The NKST Healthcare Security & Risk Summit (HSRS) 2025 is a premier industry event dedicated to addressing the unique cybersecurity and risk management challenges in the healthcare sector.
Building on the success of the inaugural HSRS last year, this summit will convene industry leaders, technology innovators, and security professionals to tackle the most pressing issues in healthcare security. With a rapidly expanding healthcare ecosystem that relies on data-driven decisions, interconnected systems, and digital healthcare services,
HSRS 2025 aims to foster innovation while mitigating security risks. This year’s event will bring together thought leaders from hospitals, healthcare research institutions, health analytics firms, health tech companies, and long-term care providers.
Attendees will gain valuable insights into the latest cybersecurity threats, privacy governance best practices, and risk management strategies tailored to the healthcare industry.
8:00 AM – 9:25AM
Breakfast & Registration
9:25 PM – 9:30 AM
Welcome Address
9:30 AM – 9:40 AM
Opening Remarks
9:40 AM – 10:00 AM
Keynote: Decoding the Modern Adversary: Tactics, Tradecraft, and Trends
This keynote, presented by CrowdStrike, will take a close look at observed modern attacks specifically against Healthcare organizations locally and globally and the impact they have had to patient care. Attack trends and common methods will be identified and advice on risk mitigation strategies will be presented.
10:00 AM – 10:30 AM
Panel Discussion: Cyber Code Grey Preparedness – Practical Measures to Ensure a Secure Recovery
Morning Break
10:30 AM-11:00 AM
11:00 AM – 11:30 AM
Panel Discussion: Enabling Secure access to clinical data from anywhere & DLP / ZTNA Controls
11:30 AM – 12:00 PM
Panel Discussion: Resiliency best practices in Identity Management
12:00 PM – 1:30 PM
Lunch (Including Lunch Keynote by Fortinet 12:45 – 1:00pm)
1:30 PM -1:50 PM
Keynote: Sponsored by WIZ
This keynote, presented by Wiz, will discuss the opportunities and risks of leveraging cloud infrastrucutre and services for healthcare delivery and research. Areas to be mindful of when sending sensitive data into the cloud will be mentioned as well as practical risk mitigation techniques to help fully harness the potential of the cloud to drive innovation securely.
1:50 PM – 2:20 PM
Panel Discussion: Foundational AI Governance (Privacy and Security)
Nearly all organizations worldwide are struggling to leverage AI for efficiency and productivity while at the same time protecting sensitive information from disclosure. This panel, featuring privacy and security specialists, will explore the steps that all organizations need to take to set up a sustainable and viable AI governance process. This will help cultivate an environment that can utilize the power of AI responsibly while also adhering to patient privacy requirements.
2:20 PM – 2:50 PM
Panel Discussion: LDG Model, 3 years in. What’s working and What’s to come
It has now been just over three full years since the shared services approach to cyber security maturity at hospitals in Ontario was launched. The Local Delivery Group (LDG) model has moved from a pilot to a fully operational model with formal governance and oversight. In this discussion, several LDG leads will discuss what has worked for them, their approach to offering services to their members, plans for this fiscal year and beyond and any desired changes to model.
2:50 PM – 3:15 PM
Afternoon Break
3:15 PM – 3:30 PM
Keynote: Segmentation for the Win
This keynote, presented by will highly some of the benefits and use cases of healthcare organizations who have transitioned to a full zero trust model. The steps to achieve the model and practical advice on where to start will be presented.
3:30PM – 4:00PM
Panel Discussion: Implementation of a Resilient HIS System
Recently, several hospitals within Ontario have transitioned to new HIS. This major clinical transformation introduces a new elements of risk as most vital patient information will be stored in this system. This is an opportunity to learn from three organizations who have recently migrated to a new HIS. They will discuss what steps they took from a cyber security perspective to ensure that security and privacy were baked into the system from the start.
4:00 PM – 4:30 PM
Panel Discussion: Secure Management of Medical Devices & Research Network
The proliferation of medical devices from pumps, to patient monitors to diagnostic imaging devices is growing exponentially. These devices pose unique risks as they cannot be managed in the same was a tranditional endpoint workstations however, they are critical to patient care delivery. Learn from three organizations who are at different stages of their journey to identifying, classifying and securing medical as well as building and other IOT devices.
4:30 PM – 4:50 PM
Prize Draw and Closing Remarks
4:50 PM – 6.00 PM
Happy Hour and Appetizers
HSRS 2025 is designed for healthcare CISOs, CIOs, and CTOs, IT and security professionals, privacy officers and compliance leaders, biomedical and healthcare research directors, health tech and AI solution providers, risk Management professionals and policy makers and regulators.
The summit will be structured to maximize engagement and learning:
