Health Sector Coordinating Council (HSCC) developed this guide to help healthcare organizations establish cybersecurity governance frameworks for the secure implementation of AI. The document addresses cybersecurity and privacy challenges associated with AI adoption across clinical and operational use cases, including electronic health records, diagnostics, and decision support systems. It focuses on identifying and mitigating AI-specific cyber risks such as data poisoning, model drift, adversarial attacks, and AI supply chain vulnerabilities while supporting compliance with healthcare regulatory requirements. The guide covers a range of AI technologies, including traditional machine learning models, generative AI, and agentic AI systems, and outlines governance objectives for both enterprise and third-party adoption scenarios. It provides industry best practices and practical tools related to governance roles and responsibilities, inventory management, vendor contracting, AI autonomy classification, incident response, operational resilience, non-human identity management, patient transparency obligations, liability considerations, and research AI governance. The document specifically focuses on the cybersecurity dimensions of AI governance and is intended to complement broader AI governance programs as well as other HSCC AI publications, including the Health Industry Third-Party AI Risk and Supply Chain Transparency Guide. For additional information, review the Health Industry AI Cyber Governance Framework Implementation Guide.