(Editor’s note: This interview is part of a series of Q&A profiles on Penn State College of Information Sciences and Technology alumni who are using their degrees to make an impact in a wide range of industries and companies around the world. A compilation of their stories was published in the summer 2022 issue of iConnect magazine.)
In his role as director of cybersecurity technology protection for the Cleveland Clinic, Keith Duemling oversees all cybersecurity protection platforms for the clinic’s facilities throughout North America and Europe. Duemling earned a bachelor’s degree in security and risk analysis from the College of Information Sciences and Technology and a master’s degree in cybersecurity and information assurance through Penn State World Campus, and is currently pursuing a health care-focused master of business administration from Penn State. A U.S. Army veteran, Duemling also serves as an adjunct instructor for the College of IST.
What did you do before working at the Cleveland Clinic?
I served in multiple information security roles within the health care space, including engineering, architecture, identity management, incident management and risk management, over an 18-year timeframe. In addition, I have managed multiple teams with varied disciplines within information technology, such as network management, endpoint management, cybersecurity platforms and a 24/7 customer service desk.
I am also a graduate of the Carnegie Mellon University CISO-Executive Education and Certification Program. I maintain multiple technical and leadership certifications from various organizations such as CHIME, HIMSS, ISACA and ISC2.
How are you using your IST skills and education to make an impact in health care?
The skills and education that I obtained through the College of IST have been instrumental in developing my ability to develop IT strategy to support health care technology and maintain operational excellence. The knowledge I have received is enduring and complements my technical certifications well as I manage a portfolio of complex projects across our health care system. The opportunity to obtain a well-balanced holistic view of technology and cyber risk challenges allows me to approach challenges from multiple perspectives to allow my teams to focus on what matters more quickly.
What are the top current information technology trends, needs and challenges in your industry?
First, the safety of our patients throughout their entire cycle of care is the number one priority for the Cleveland Clinic and all our caregivers. It continues to be a challenge in the whole health care market due to the convergence of information technology, patient safety, innovation, the proliferation of medical IoT platforms, and patients seeking or receiving care remotely and through nontraditional methods.
Additionally, developing and supporting technology to extend the reach of our health care systems into underserved communities or for patients with constrained access will continue to be a priority for health care IT. The ethical imperatives to provide care to all those in need are clear in communities worldwide. Technology is one technique to help move our industry in the right direction.
Finally, monitoring cyber risk to health care platforms continues to be a significant priority. Health care organizations and health care technology continue to be targets of opportunity for many threat actors – individuals, groups, and nation-states. We must continue to strengthen our defenses and recovery capabilities as the threats continue to be present without signs of decreasing. One essential step is the continued investment in future generations of technology and cybersecurity professionals to address the skill shortage while increasing diversity and inclusive practices throughout the industry.
Through your role, how are you working to advance these trends and/or address these needs and concerns?
Focusing on these three trends is a part of almost every activity. I support our health care platforms' operational reliability and resiliency by protecting them directly, protecting the caregivers who use them, and protecting our entire clinical environment. Protecting our environment also positions the Cleveland Clinic to continue innovation, research, discovery, and expansion of care into geographic areas where health care services may not be meeting the community needs or through our thought leadership throughout the world health care market.
My role also includes the development of caregivers to support the current and future needs of the Cleveland Clinic and the direct oversight of the vast majority of our technical protection platforms.
What motivates you in your work?
Patients come to the Cleveland Clinic with some of the most complex and challenging health care needs, and being part of helping so many in need has already inspired me. One of my core values is selfless-service and the desire to help others. That continues to motivate me every day of my career to help support our global health care mission.
What is the most rewarding part of your job?
Helping our caregivers in their mission to provide the best care possible to every patient, every day, and developing and supporting the next generation of technical and cybersecurity employees.