Dave Heaney serves as the Chief Information Security Officer (CISO) at Mass General Brigham (MGB). At MGB, Dave leads a team responsible for a holistic cybersecurity program across the enterprise. The program focuses on compliance with HIPAA and key regulations, cybersecurity event monitoring and incident response, identity & access management, and cyber risk management. Outside of MGB, Dave has been sought out as a speaker at multiple events based on his broad background and ability to present complex cybersecurity topics in an engaging manner.

Prior to his role at MGB, Dave served as an executive in the Cybersecurity Consulting practice at Ernst & Young (EY), LLP, where he advised CISOs, business executives, and boards on large-scale strategic cybersecurity initiatives. Working primarily with large healthcare and biopharma clients, he focused on achieving meaningful risk reductions, especially within the context of large digital transformations. Dave also has experience in other industries, most notably in retail as Vice President, IT Security at The TJX Companies.

Dave holds a Bachelor’s Degree in Computer Science from the University of Massachusetts, Amherst, and a Masters of Business Administration from the University of Massachusetts, Boston. He lives in Massachusetts with his wife and two children.