Washington’s healthcare sector depends on cybersecurity leaders who can protect clinical systems, sensitive patient data, and the digital infrastructure behind care delivery at scale. The people in this feature reflect that responsibility across major health systems, provider organizations, and healthcare technology environments. Their backgrounds span enterprise security leadership, risk management, compliance, cloud and infrastructure protection, and the practical work of strengthening resilience in complex healthcare settings.
Joseph “Augie” D’Agostino — Chief Information Security Officer, UW Medicine
Joseph “Augie” D’Agostino serves as chief information security officer at UW Medicine, bringing a background that combines healthcare security leadership with long experience in risk, governance, and compliance. Before joining UW Medicine in 2022, he spent more than five years at Spectrum Health, first as director of information security for governance, risk, and compliance and then as deputy chief information security officer. Earlier in his career, he held a long-running leadership role in IT security, risk, and compliance at Dean Foods. That progression gives him a strong blend of enterprise security management and healthcare-specific leadership suited to one of Washington’s most important academic medical environments.
Kevin Lee — Executive Director of Cybersecurity Attack Surface Management, Providence
Kevin Lee is executive director of cybersecurity attack surface management at Providence, where he has moved through a series of cybersecurity leadership roles including executive director of cybersecurity OCISO, executive director of cybersecurity PMO, and director of the cybersecurity program office. His background is somewhat unconventional compared with traditional security-only leaders, but it shows a long track record in program management, transformation, IT delivery, and leadership inside large insurance and healthcare-related organizations including Providence, Premera Blue Cross, Liberty Mutual, and Safeco. That mix of organizational transformation and cyber program leadership makes him a notable figure in the operational side of healthcare security at one of the region’s largest health systems.
Brian Cady — System Director Information Security, PeaceHealth
Brian Cady serves as system director of information security at PeaceHealth, where he leads enterprise-wide information security teams and programs across the regional health system, with oversight spanning cybersecurity architecture, engineering, IAM, governance, risk, compliance, and broader security standards. Before taking on that role, he spent nearly a decade at Providence Health & Services as director of information security architecture, helping lead secure cloud and AI-related design across a massive healthcare environment that included hospitals, clinics, research centers, and insurance operations. Earlier roles at Wizards of the Coast and Microsoft add additional depth in infrastructure architecture, cloud migration, and secure enterprise systems, giving him a profile that combines healthcare-specific experience with deep technical and architectural credibility.
Jacob Martin — Chief Information Security Officer, HealthFees.org
Jacob Martin serves as chief information security officer at HealthFees.org, where his role spans security, architecture, and technical strategy for a healthcare data and AI platform operating under HIPAA and SOC 2 requirements. His profile emphasizes security-by-design, zero-trust architecture, compliance engineering, and hands-on leadership across cloud infrastructure, data pipelines, and AI systems handling sensitive healthcare and financial data. Earlier experience includes engineering and architecture roles at StrongClose.ai, Intuit, Urbanspoon, Avvo, and other technology-focused organizations. While his background is less rooted in traditional provider environments than others in this feature, his current role places him squarely in the growing healthcare technology segment where security, compliance, and platform resilience are central.
Derek Brown — Chief Information Security Officer, Cadence
Derek Brown is chief information security officer at Cadence, where he leads security strategy, governance, and risk for an AI-enabled remote care platform with responsibility for protecting patient data, clinical systems, and privacy-sensitive workflows. Before joining Cadence in 2026, he held security engineering leadership roles at Plaid and worked at Meta on privacy-aware infrastructure, where he contributed to compliance and privacy protections across major platforms. His earlier experience at Lacework and Duke University Health System adds further depth in cloud infrastructure, engineering, and healthcare-adjacent operations. Brown stands out in this group for bringing a deeply technical, engineering-led approach to security inside a healthcare platform company shaped by AI and remote care.
Securing care delivery in a digital healthcare environment
What stands out across this group is how broad the healthcare cybersecurity mandate has become. These leaders are not only protecting hospitals, provider systems, and patient data. They are also helping secure the cloud platforms, operational programs, and digital care environments that healthcare organizations increasingly depend on every day.
Explore more profiles of the leaders shaping cybersecurity across numerous industries in our CISOs to Watch collection.