VP & CISO, Oracle Health and Global Industries
Healthcare cybersecurity executive with 25+ years across two Fortune-ranked CISO seats. Active advisor to healthcare cyber and executive protection portfolios.
Jason Barnett is a healthcare cybersecurity executive with 25+ years building and leading enterprise security programs at Fortune 50 scale. He currently serves as VP & CISO for Oracle Health and Global Industries, owning global security strategy, operations, product security, medical device security (IoMT), compliance, and customer trust across Oracle's healthcare technology portfolio (formerly Cerner) and the regulated-industry verticals served by Oracle's Global Industry Units.
Before Oracle, Jason was Chief Security Officer at HCA Healthcare (Fortune 61), where he ran a 400-person global team and a $300M annual budget protecting 335,000 employees and 35 million patient encounters per year. He led security for the $2B EHR migration to Google Cloud and co-authored the U.S. Health Sector Coordinating Council five-year cybersecurity strategy.
Jason brings deep credentials across HIPAA Security & Privacy Rules, HITRUST CSF, HHS 405(d), NIST CSF 2.0, and medical device (IoMT) security, with regulatory engagement spanning HHS/OCR, FBI, and CISA. He serves on advisory boards for VanishID (executive privacy), CORL Technologies / Meditology Services (healthcare TPRM), and Pindrop (voice fraud detection).
Owns global security strategy, operations, product security, medical device security (IoMT), and compliance across the healthcare technology portfolio (formerly Cerner) and regulated-industry verticals. Reports to Oracle's Global CSO.
Fortune 61. Led a 400-person global team and $300M annual budget protecting 335,000 employees and 35M annual patient encounters. Chair, HCA Cybersecurity Council. Co-author, U.S. Health Sector Coordinating Council five-year cyber strategy.
Owns global compliance programs spanning HIPAA Security & Privacy Rules, HITRUST CSF, HHS 405(d), NIST CSF 2.0, SOC 1/2/3, ISO 27001/2/17/18, BSI C5, HDS, NHS, ENS, IRAP, and DoD federal enclave — coordinated with EY, Schellman, Coalfire, and BDO across U.S., EMEA, and APAC.
Leads AI transformation inside Oracle Health, embedding security and privacy into AI-enabled clinical and operational products. Built medical device (IoMT) security programs at both Oracle Health and HCA. Co-founded HCA's Responsible AI Committee.
Becker's Hospital Review
Cyber Defense Magazine
Nashville Technology Council
Cybercrime Magazine
National CIO Review
Agentic AI-powered protection for executives and enterprise leadership. Backed by Dell Technologies Capital.
Healthcare-specific TPRM platform serving payors and providers — addressing the post-Change Healthcare third-party risk imperative.
Voice security and deepfake detection for healthcare contact centers and enterprise authentication.
Open to speaking, advisory roles, and board engagement. Strongest fit: healthcare cybersecurity, AI governance, and global compliance.