Principal Cybersecurity Strategist

About The Position

Requirements

• Bachelor's degree or higher in cybersecurity, information technology, business, economics, organizational management, or related field.
• Significant cybersecurity strategy experience, including enterprise‑level planning and transformation.
• Demonstrated success in developing and presenting cybersecurity strategies at the board/executive level.
• Significant experience advancing cybersecurity maturity and capabilities in healthcare and/or financial services environments.
• Proven expertise in AI security and the secure implementation of AI in cybersecurity practice.
• In-depth knowledge of regulatory and compliance frameworks relevant to healthcare and financial services.
• Consulting skills.
• Experience leading large-scale organizational change and adoption of new technologies, processes, and systems.
• Must have the ability to provide a high speed DSL or cable modem for a home office.
• A minimum standard speed for optimal performance of 25x10 (25mpbs download x 10mpbs upload) is required.
• Satellite and Wireless Internet service is NOT allowed for this role.
• A dedicated space lacking ongoing interruptions to protect member PHI / HIPAA information

Nice To Haves

• MBA or Master's degree in Computer Science, Information Technology, or a related discipline.
• Professional cybersecurity certifications (e.g., CISSP, CISM, CISA).
• Experience with project security phases, cloud security policies, and identity and access management.
• Familiarity with security review processes and strategic consulting frameworks.

Responsibilities

• Define, develop, and continually advance EIP's long-term cybersecurity strategy, ensuring alignment with corporate goals and evolving risk landscapes.
• Set direction for capability development, maturity roadmaps, and investment priorities over a three-year horizon.
• Develop and present executive and board-level materials, articulating cybersecurity vision, strategic priorities, maturity metrics, and progress against objectives.
• Serve as a strategic advisor to senior leadership and board stakeholders.
• Leverage deep experience in healthcare and/or financial services to inform strategy and ensure compliance with sector-specific regulatory frameworks (e.g., HIPAA, PCI DSS, SOX).
• Lead the strategic integration of AI into cybersecurity operations, ensuring secure adoption, risk mitigation, and compliance.
• Advise on AI security trends, regulatory implications, and best practices for responsible implementation.
• Architect and execute initiatives to advance cybersecurity program maturity, talent development, and operational excellence.
• Establish frameworks for continuous assessment, capability benchmarking, and value creation.
• Direct the allocation of resources and investment in cybersecurity capabilities, controls, and technologies based on risk, business value, and strategic impact.
• Drive a security-centric culture through enterprise change management strategies, maximizing adoption of strategic priorities and minimizing resistance across a matrixed organization.
• Provide consultative expertise to EIP department leaders, project teams, and cross-functional partners to ensure strategic alignment and integration of cybersecurity priorities at every stage of project and program lifecycles.

Benefits

• medical
• dental
• vision benefits
• 401(k) retirement savings plan
• time off (including paid time off, company and personal holidays, volunteer time off, paid parental and caregiver leave)
• short-term and long-term disability
• life insurance