Joey Johnson
CISO Premise Health
Joey Johnson is Chief Information Security Officer at Premise Health, provider of large employer sponsor health and wellness centers for employees. In 2016 Joey was named CISO of the Year by the Nashville Technology Council. This was followed in 2017 by being named the 2017 Southeast U.S. CISO of the year by the national Technology Executives Network. Joey is responsible for leading all organizational efforts related to security operations and engineering, information technology and security compliance, identity access management, policy development, security audit, and vendor risk management to meet challenging security and compliance demands. Joey has been instrumental in implementing a proactive security and risk management environment focused organizational risk awareness that is transformative in the healthcare industry. He successfully launched a cutting-edge vendor and business associate maturity development program that dynamically empowered business partners of various scales and complexity to meet challenging security and compliance demands. Additionally, he has worked to develop a team driven by passion in security, with a focus on empowering and fostering women in the security field.
Aside from cybersecurity, he has grown the private equity Premise Health from a ~$50M annual revenue organization 10x, now grossing nearly $800M annual revenue, and has guided the organization through multiple recapitalizations, mergers, and now strategic acquisitions.
Prior to joining Premise Health, Joey was the Chief Security Officer for the United States Department of Commerce, Office of Computer Services. He has over 18 years of experience in the cyber-security industry including leadership roles in both the public and private sectors, with a focus on organizations in the federal government, information technology, healthcare, and transportation industries. Outside of Premise Health Joey maintains an active leadership presence in the healthcare cyber-security industry participating in numerous steering and advisory committees with the National Healthcare Information Sharing & Analysis Center (NH-ISAC), various threat intelligence and sharing groups, security news groups, and private/public sector partnerships. He serves on the Editorial Board for the Journal of Law and Cyberwarfare helping to shape the future national and international regulatory landscape around cybersecurity, and also works as a senior advisory member on the E-Health Initiative Federal Executive Advisory Board on Privacy & Security.