BayCare has appointed Robert Carvajal, CISSP, as its Chief Information Security Officer (CISO).
In this role, Carvajal will lead the organization’s cybersecurity strategy, supporting its continued focus on innovation, patient safety, and operational excellence.
Carvajal brings over 20 years of experience in information technology, including nearly two decades in cybersecurity leadership. He most recently served as BayCare’s Director of Information Services Security and Threat Management, where he led enterprise security operations, incident response, and threat intelligence initiatives. During his tenure, he played a key role in strengthening the health system’s cybersecurity posture.
As CISO, Carvajal will work closely with executive leadership to advance BayCare’s technology strategy and digital health initiatives. He will oversee information security governance, promote secure health information exchange, and lead multiple teams to ensure robust protection across the organization. His role will also involve close collaboration with clinical and operational leaders to support the delivery of high-quality, patient-centered care.
Carvajal has extensive expertise in developing enterprise security strategies, managing incident response, and aligning cybersecurity programs with regulatory frameworks such as HIPAA and NIST. His experience spans health systems, digital health, and large enterprise environments, with a strong focus on risk management, resilience, and continuous improvement.
He holds a Bachelor of Science in Criminal Justice from Northeastern University and maintains several industry certifications, including Certified Information Systems Security Professional (CISSP).
