Information security, protection and privacy.


Christine Sublett is a senior executive and entrepreneur with a proven record throughout the healthcare and cybersecurity ecosystems, with expertise in digital health, health information technology, and medical device industries. She combines her strong cybersecurity and technical foundation, people skills, and business operations with her deep knowledge in cybersecurity, privacy, and enterprise risk management to provide support to executives and boards to meet their business, technology, cyber-risk, and information protection objectives while maximizing the value of their information assets.

In 2011 Christine founded Sublett Consulting where she serves as CEO. Sublett Consulting provides C-level and Board advisory services with an emphasis on cybersecurity and information protection for early to mid-stage companies in the digital health, medical device, and cybersecurity industries. Recent engagements include a medical device company in the Silicon Valley, and engagements with multiple digital health and Software as a Medical Device (SaMD) organizations in Israel. Christine was responsible for assessment of product and enterprise security leadership capabilities and program management, and product and enterprise security program optimization recommendations.

Prior to launching Sublett Consulting, Christine led technology and security with both LifeMasters Supported SelfCare and StayWell Health Management which acquired LifeMasters in 2010. While at StayWell, Christine was responsible for all aspects of Security, Technology, Privacy, Healthcare Compliance, and Audit where she led the successful integration of technology and personnel of StayWell and LifeMasters’ technology, engineering, and security teams after the acquisition, resulting in release to market of integrated wellness and disease management products allowing Staywell to attain a leadership position in this industry.

From 2007-2010 Christine was the VP Security, Risk Management & Compliance at LifeMasters Supported SelfCare. With responsibility for security, risk management, privacy, audit and healthcare compliance, Christine managed a three-year technology and security strategy that resulted in a 60% reduction of security incidents and strong integration between security initiatives, product development, and business strategy. Christine also chaired the Diversity Committee which promoted diversity and inclusion in the workplace.

From 2005-2007 Christine was the Chief Security Officer & Security Architect at Lucile Packard / Stanford Children’s Hospital, nationally ranked and internationally recognized for pediatrics and obstetrics. In addition to advising the executive team on security strategy, she led the establishment of a new information and cybersecurity program addressing information protection, cybersecurity management, incident response, and risk management. Christine was also responsible for designing, building, testing, and implementing security systems for applications including an Electronic Health Record (EHR) and medical device networks.

From 2003-2005, Christine held the position of Chief Information Security Officer and Director of Technology for Bio-X at Stanford University, an independent biomedicine institute supporting over three hundred biomedical research labs. She served in a leadership capacity to multiple Stanford University/Stanford University Medical Center strategic committees overseeing security, privacy, IT governance, supercomputing and disaster/emergency preparedness and recovery.

Christine also spent three years as the Director of Security and Technology at Pharsight, a pharmaceutical software and consulting firm. She implemented an IT governance program focusing on strategic planning, prioritization, decision-making, and performance measurement to increase IT efficiency resulting in $2M cost savings/year, while managing a budget more than $5M.

Since 2012, Christine has served as an advisory board member for multiple digital health, cybersecurity, Software as a Medical Device (SaMD), and data analytics companies and hospitals internationally and domestically, including the El Camino Hospital Board of Director’s Security, Privacy, Compliance and Audit Committee. Her work for El Camino Hospital provides guidance and oversight on security, privacy, internal and external audit, information governance, enterprise risk management and M & A due diligence. Her previous advisory board work for early to mid-stage companies include Gliimpse (acquired by Apple), Porticor (acquired by Intuit), BeyondCore (acquired by Salesforce), DoctorBase (acquired by Kareo), Ciitizen (acquired by Invitae), CareLinx (acquired by Sharecare), and Nyotron (acquired by Acronis) where she gained a reputation for her information protection and risk management strategies, and maximizing the value of her company’s information assets, leading to strong funding rounds and acquisitions.

In 2016 and 2017 Christine served on the U.S. Department of Health and Human Services Healthcare Sector Cybersecurity Task Force, tasked with developing a report of recommendations to Congress. Christine continues to be involved with several federal healthcare cybersecurity policy and guidance initiatives including multiple Healthcare Sector Coordinating Council working groups through the Department of Homeland Security providing guidance on medical device, telehealth/telemedicine, ML/AI cybersecurity best practices, and the impact of quantum computing on healthcare cybersecurity. And in 2021, she was named a 2022 Public-Private Analytic Exchange Program participant focused on Countering Foreign Malign Social Network Manipulation in the Homeland through the Department of Homeland Security.

In 2018, Christine was selected as the Healthcare and Public Health Cybersecurity National Deputy Director for the InfraGard National Public Sector program, and since 2016 has been a Hammer Nutrition sponsored ultra-distance bicycle racer. She lives in San Mateo, CA with her family.


How Sublett Consulting Works

Companies need to focus on their competencies; Sublett Consulting delivers what your internal staff cannot.

We know where you need to be, and we know how to get you there.