This role sets security strategy; governs cybersecurity risk; ensures alignment with applicable regulatory and contractual requirements (including HIPAA/HITECH); leads incident preparedness and response; and partners with executive leadership, IT, Compliance, Privacy, Legal, and clinical/operational leaders to reduce risk to patient care and the organization. Responsibilities: Accountability & Scope: Leads the enterprise cybersecurity program across corporate and facility environments, including networks, endpoints, servers, cloud services, applications, EHR/clinical systems, identity and access management, and third parties that create, receive, maintain, or transmit ePHI.