Role OverviewR1 is seeking an SVP, Chief Information Security Officer (CISO) to lead enterprise-wide cybersecurity strategy, threat operations, and risk management.
The CISO will serve as the executive owner accountable for protecting R1's systems, data, and client environments by ensuring resilience, regulatory compliance, and trusted operations at scale.
This leader will stabilize, modernize, and transform R1's cybersecurity capabilities, while partnering closely with executive leadership, clients, and the Board to maintain confidence in the company's security posture.
Key Responsibilities Enterprise Cybersecurity Leadership - Define and execute a multi-year cybersecurity strategy aligned to R1's business priorities
- Serve as the executive owner of cybersecurity risk and posture across the enterprise
- Lead all aspects of security operations, including:
- Threat detection and response
- Identity and access management
- Cloud and infrastructure security
Incident Management & Executive Accountability - Own end-to-end incident response and crisis management
- Lead executive decision-making, escalation, and communications during security events
- Interface with regulators, customers, and partners on security incidents as needed
Governance, Risk, and Compliance - Ensure compliance with applicable regulatory and customer requirements (e.g., HIPAA, HITRUST, PCI)
- Maintain a robust cyber risk management framework
- Lead audit readiness, certifications, and ongoing assurance activities
Operating Model & Organizational Leadership - Build and evolve a high-performing global security organization
- Define clear roles across:
- Third-party security providers
- Drive accountability, performance, and continuous improvement across the function
Security Architecture & Transformation - Define the target-state security architecture and roadmap
- Lead modernization initiatives (e.g., zero trust, cloud security, identity strategy)
- Oversee vendor strategy, tooling decisions, and security investments
Financial Stewardship & Efficiency - Own the cybersecurity budget and investment strategy
- Optimize spend across personnel, tools, and vendors
- Ensure strong ROI and alignment with enterprise risk priorities
Customer & Board Engagement - Serve as the senior security leader for customer-facing discussions
- Partner with commercial and client teams to support growth and retention
- Provide regular updates to executive leadership and the Board on cyber risk, posture, and investments
Partner to CIO, Product, and Engineering Leadership - Work closely with Chief Information Officer (CIO), Product, Engineering, and Infrastructure leaders to:
- Embed security into product and platform design
- Enable innovation while managing risk
- Support scalable, secure delivery models
Key Outcomes Within the first 12-18 months, the CISO will be expected to:
- Establish a clear, forward-looking cybersecurity strategy and roadmap
- Strengthen enterprise confidence in security posture across executives, customers, and regulators
- Deliver a right-sized, efficient operating model aligned to R1's global delivery structure
- Modernize security capabilities and reduce enterprise risk exposure
- Build a durable foundation for long-term cybersecurity performance and governance
Experience & Qualifications - 15+ years of experience in cybersecurity leadership, including prior CISO or Deputy CISO/VP in a large enterprise organization
- Proven track record leading enterprise-scale security organizations in complex, regulated industries
- Incident response and cyber operations
- Cloud and infrastructure security
- Risk management and regulatory compliance
- Experience engaging with:
- Executive leadership teams
Leadership Profile - Strategic, enterprise thinker with strong execution discipline
- Comfortable operating in transformational, complex environments
- Strong communicator with ability to translate technical risks into business impact
- Credible advisor to CEO, CIO, and Board on cyber risk and investment decisions
- Collaborative leader who builds trust across IT, Product, and business teams
What Success Looks Like - A resilient, trusted cybersecurity function with clear executive ownership
- Improved customer and regulator confidence in R1's security posture
- A modern, scalable security architecture aligned to business growth
- Strong alignment between security investment and enterprise risk priorities
For this US-based position, the base pay range is $303,850.00 - $382,567.30 per year . Individual pay is determined by role, level, location, job-related skills, experience, and relevant education or training.
This job is eligible to participate in our annual bonus plan at a target of 40.00%
To learn more, visit: R1RCM.com
Visit us on Facebook