
Clinical-First Healthcare Cybersecurity Support for Primes, Integrators, and Health-Tech Teams
CyberAIO provides subcontract and advisory support to organizations delivering security, compliance, and resilience programs in healthcare environments.We specialize in translating cybersecurity requirements into controls that work in real clinical settings - where downtime, device failure, or workflow disruption directly impacts patient safety.
Premiering at Black Hat USA 2026 • Midnight in the War Room • Halcyon • WiCyS • SAM.gov Active
In the ER and OR, there is no "IT ticket" for a life-critical system failure. You need security that understands the velocity of care.CyberAIO bridges the gap between technical defense and clinical reality. We approach cyber risk like trauma triage: prioritize what harms patients first, stabilize the environment fast, and build defenses that hold under extreme pressure.
Subcontract support for healthcare and public-sector security programs
Embedded advisor within delivery teams (GRC, IoMT, IR readiness)
Short-term assessments with documented handoff to prime teams
Fractional clinical-security expertise during audits or incidents
Healthcare systems and academic medical centers
Health-tech and clinical AI vendors
Federal healthcare programs (VA, HHS, CDC)
Consulting firms needing clinical-context depth
If clinicians don't trust the system, the architecture isn't secure. This frontline perspective is what I bring to AI risk assessments, IoMT triage, and audit readiness.
1. IoMT & Clinical AI Risk
Device and system threat modeling in live clinical environments
AI governance support for FDA- and audit-facing products
Risk assessments that respect bedside workflows
2. Healthcare GRC & Audit Readiness
HIPAA, NIST, SOC 2 alignment without operational disruption
Policy and control development clinicians actually follow
Federal healthcare subcontract support
3. Incident Readiness & Clinical Resilience
Ransomware and downtime planning for EHR and device environments
Executive and clinical tabletop exercises
Documentation and playbook primes can be reused with clients
Prevented pre-launch PHI exposure for clinical AI products; supported FDA-facing security documentation
Built audit-ready HIPAA-aligned security programs for healthcare and health-tech teams
Prevented $30K+ in fraud losses through SIEM, dark web, and credential monitoring
Trained 200+ clinicians on secure Epic workflows, reducing human-factor risk
🎥 FEATURED DEFENDER: MIDNIGHT IN THE WAR ROOM
Premiering at Black Hat USA | August 5, 2026Featured as one of 50+ global defenders in Semperis' groundbreaking cyberwar documentary - alongside Jen Easterly (Former CISA Director), Gen. (Ret.) David Petraeus, Chris Inglis (Former National Cyber Director), Dr. Mary Aiken (Cyberpsychologist & INTERPOL Advisor), Marcus Hutchins (WannaCry Hero), and other industry leaders.
Selected Recognition
Guest Expert: Halcyon, Last Month in Security (Podcast, 2024) - Listen to Podcast
Panelist: Inside Hacker Summer Camp (WISP, 2025)
Lead DEF CON Scholar Badge Liaison (2025)
RSA Conference Scholar (WISP / BlackGirlsHack) (2025)
AWS re:Invent Grant Recipient (2024)
Women in Cybersecurity Conference Scholar (WiCyS)
Community Leadership
Lead DEF CON Badge Liaison
Lead Volunteer, WISP Booth (Black Hat USA)
WISP & DEF CON Scholar
Hacker Summer Camp Scholar - The Diana Initiative & BlackGirlsHack
CyberAIO supports organizations that need senior healthcare cybersecurity expertise without onboarding full-time staff.Engagements are structured to integrate cleanly into existing delivery teams, meet client expectations, and protect clinical operations.
Federal & Subcontracting Credentials
SAM.gov Active
UEI: KV2BR8QU36J7
CAGE Code: 18D81
Status: Women-Owned Small Business (WOSB)