HISA has established a Cybersecurity Community of Practice to inform and engage all stakeholders about cybersecurity in healthcare and influence the application of sound practices. The expanded use of networked technology, internet-enabled devices, applications and electronic datasets, used for a range of clinical, financial and administrative functions, have significantly minimised the number of manual steps and time-consuming processes in healthcare workflows.

Yet, such connectivity and automated processes have increased the vulnerability of healthcare providers to cybersecurity breaches. While cybersecurity may be perceived as primarily a technical matter it is much broader than this and encompasses both technology and human processes.

As we continue to move toward integrated digitally-enabled organisations, the disruption caused by cybersecurity incidents can have far-reaching effects, and may include lack of access to critical clinical information and services, risks to patient safety, costly replacement of equipment and data, loss of community confidence in our healthcare system and reputational damage to the providers and organisations that suffer a breach.

Cybersecurity Membership

Are you involved in cybersecurity? Do you have any suggestions, ideas or would like to get involved in this community of practice?


David Bunker (Chair)

Executive Director
Queensland Genomics Health Alliance

David Bunker is the Executive Director of the Queensland Genomics Health Alliance. He has a commitment to health and social outcomes, and values-based business transformation. His commitments include significant voluntary contribution to NFP Boards, Graduate Business Schools, as well as Professional Societies and Academic Colleges. His current focus with the Queensland Genomics Health Alliance is to fast track genomics research and its translation into common healthcare practice, while building a sound, evidence-based decision making framework for strategic capability and capacity building programs within the health system.

Board, College and Society Membership:

Tony Abbenante

Executive Director
AABB Consulting – Healthcare

Tony has 27 years of ICT experience in healthcare, key roles and engagements include; Victorian Heart Hospital enterprise ICT design and strategy, Victorian Comprehensive Cancer Centre – Parkville Precinct models of care (ICT director and enterprise design), Hervey Bay St Stephen’s Uniting Care enterprise digital hospital design and manager of the Digital Design Authority Victoria. This experience has lead to a deep understanding of overall needs of the healthcare ecosystem relating to the delivery of healthcare benefits through IM&ICT. He is highly experienced in successful design and delivery of digital hospital solutions, healthcare ICT strategy, governance and program management.

Specialised in the design and delivery of enterprise Electronic Medical Record solutions, electronic Medications Management, eReferrals and implementing Australian Digital Health Agency national initiatives. Tony is able to draw on his experience in senior management roles for private organisations, government and health entities to describe and target practical, effective and efficient solutions that relate to the maturity and capability of individual organisations across a complex landscape. Cybersecurity is one of many key challenges that is generally not well funded or understood and needs a focus in this journey.

Dr Damian Claydon-Platt

Chief Clinical Information Officer
Epworth Healthcare

Dr Claydon-Platt is CCIO at Epworth Healthcare, a large not-for-profit healthcare group in Victoria. Damian is a medical doctor with 18 years’ clinical experience working predominantly in the Intensive Care Environment. He is currently involved in the strategic alignment of IT priorities to clinical and organisational requirements, influencing of corporate vision to embrace the benefits of information technologies, stakeholder engagement across the group, and implementation of clinical-facing information systems. He maintains a clinical perspective by continuing to work in intensive care, and is keenly aware of the need to minimize the impact of digital solutions on clinical workflows. As the CCIO, he is constantly trying to balance the increasing demand for simple access to clinical information anywhere, anytime, on any device, with the IT department’s need to take an enterprise view on cybersecurity to ensure this sensitive information is secure.

Prof Trish Williams

Professor of Digital Health Systems, Flinders University
Chair, Cisco

Trish is co-director of the Flinders Digital Health Research Centre, a newly formed multidisciplinary entity to further digital health systems and technologies research. Her role is to foster digital health university-industry-government collaborations to contribute to ‘Digital Health Enabling Health Smart Living’. As a passionate contributor to, and advocate for, health informatics standards, Trish is a previous Chair of HL7 Australia, international co-chair HL7 Security and nominated expert on ISO health informatics standards. Trish is co-editor of HISA’s Privacy Guideline and E-Safety Professional Practice Guidelines, Board Member of HISA, primary author of the RACGP Computer and Information Security Standards, NPS MedicineWise Data Governance Committee member, amongst other industry and health advisory boards. She has over 100 health and medical information security and safety publications.

Trish’s research and capability span health cyber-security, privacy, mobile health, Health Internet of Things (HIoT), medical device security, data quality, governance, health software safety, and health informatics standards. Trish’s internationally recognised expertise in medical information security (as well as her liking for full-bodied red wine!🍾), and these together with her passion for practical outcomes and experience in healthcare computing are integrated to lead research and innovation in digital health.

Upcoming Events

There are no upcoming events at this time.


Available to HISA members only. To view the recording, you may need to provide your contact information.

What is the HISA Cybersecurity Community of Practice?

Prof Trish Williams and Dr John Zelcer
2 June 2017

Innovating Health Roundtable

Whilst we embrace digital programs and solutions to innovate and support health system change, we must be aware of the ever increasing and inherent risks to health operations and the protection of health related data. This roundtable explored the question: how do we balance innovation against risk?

We welcomed an international guest – Theresa Meadows, Senior Vice President and CIO at Cook Children’s Health Care System in Dallas Texas, and Co-Chair of US Department of Health and Human Services Healthcare Industry Cybersecurity Taskforce. Theresa provided perspectives on the question of significance and the current state of cybersecurity in healthcare.

Additionally, Professor Trish Williams, Chair and Professor of Digital Health Systems at Flinders University, aided Theresa and led the discussion focused on innovation and the digital change agenda within healthcare, which is the theme of this series. Finally, we were also fortunate to have Simon Eid, Country Manager ANZ for Splunk, who provided specific insights and industry trends in cybersecurity, analytics and the protection of data across industries including healthcare.

The roundtable discussion sought to provide an international update on cybersecurity in healthcare, in particular what the Taskforce in the US is aiming to accomplish, and to pose the question of how do we innovate and reform whilst dealing with increasing and more sophisticated cyber threats? The discussion focused on a number of key themes on governance, risk appetite, protecting and sharing information, organisational preparedness, using security as part of innovation, and thinking differently about data in healthcare.

Find Out More

Key take-away points, interviews and a report.


National Institute of Standards and Technology

NIST implements practical cybersecurity and privacy through outreach and effective application of standards and best practices necessary for the U.S. to adopt cybersecurity capabilities.


SysAdmin, Audit, Network and Security – the most trusted and by far the largest source for information security training in the world


Global Information Assurance Certification – certification that develops and administers premier, professional information security certifications.


Free and Open Source Learning for Cyber Security, IT and more.