As digital transformation accelerates across industries, the role of the Chief Information Security Officer (CISO) has never been more critical. In Germany, a country known for its engineering precision and robust regulatory environment, CISOs are tasked with balancing innovation, risk management, and compliance while protecting complex enterprise systems.
The following list highlights 10 CISOs who are shaping the nation’s cybersecurity landscape by demonstrating leadership, technical expertise, and strategic vision.
Matthias Muhlert — Oetker Group
Matthias Muhlert is the Group CISO of the Oetker Group (Dr. August Oetker KG) and serves as the ECSO CISO Ambassador for Germany. With over 25 years in information security, he has led global security initiatives across diverse sectors, from automotive to banking. At Oetker, he’s responsible for setting group-wide security standards, building a security community, and driving both IT and operational technology (OT) security strategy. He holds multiple certifications (ISO 27001 ISMS Manager, CISM, CISSP, CEH) and is the author of Navigating the Cyber Maze: Insights and Humor on the Digital Frontier.
Christian Gorke — Deutsche Börse Group
Christian Gorke is CISO / Chief ICT Risk Officer / Director at Deutsche Börse Group. At Deutsche Börse, he is not only responsible for information security but also for ICT risk management, making his role especially strategic in balancing innovation, cloud, and regulatory risk. His participation as a speaker at the 9th CISO‑360 Global Congress highlights his influence in the CISO community.
Michael Schrank — adidas AG
Michael Schrank is Group CISO at adidas AG, based in Nürnberg. Before adidas, he was CISO at Daimler AG, where he shaped a global security strategy. He is known for advocating for information security as a business enabler, not just as a technical necessity.
Fabian Topp — Allianz Germany
Fabian Topp is CISO of Allianz Germany. He’s won CISO awards and has long contributed to building Allianz’s cybersecurity culture. In interviews, he emphasizes balancing security rigor with practical business needs to drive innovation and risk-aware growth.
Marcel Reifenberger — CANCOM
Marcel Reifenberger is Group CISO and VP Corporate Governance at CANCOM SE, one of Germany’s leading IT services providers. He also leads AI strategy within the company, bridging security and emerging technology. In a Tenable case study, he highlighted CANCOM’s adoption of its exposure management platform, saying, “Digital trust is of the utmost importance.”
Simon Baeckerling — Goldman Sachs
Simon Baeckerling appears on Scytale’s “Top CISOs in Germany for 2024” list. According to Scytale, he has deep expertise in ISMS, business process alignment, risk management, and ISO 27001, particularly in the investment banking sector. While a detailed public bio is limited, his inclusion signals him as a rising strategic security leader in Germany.
Linus Plum — ALDI DX
Linus Plum is another CISO featured by Scytale in their top-10 Germany list. He is noted for his work in critical infrastructure, financial services, and tech, and is skilled in GRC (governance, risk & compliance), business continuity, and leadership transformation. According to the same profile, he is an OSPA award winner (2021), further underscoring his recognition in the German cybersecurity space.
Michael Heußinger (also known as Michael Heubinger) — Rödl & Partner
Michael Heußinger is mentioned by Security Boulevard’s list of German CISOs. He is experienced in ISO auditing (ISO 27001, ISO 9001, etc.), compliance (TISAX), and people/strategy leadership. He represents a class of security leaders who focus on integrating compliance, risk, and security operations to support business goals.
Stefan Lorenz — Monarch
Stefan Lorenz is an experienced general manager and team lead, guiding international agile teams from over 18 nations with extensive expertise in hybrid leadership, both on-site and remote. As an information security expert and data protection professional, he brings deep technical knowledge in infrastructure and application operations, including modern hyperscaler cloud environments. Stefan approaches security pragmatically, emphasizing that it must serve business objectives. He has successfully implemented multiple ISMS and data protection management systems in companies, applying standards such as DSGVO, ISO 27001, and BSI Grundschutz.
Henning Christiansen — Ottobock
Henning Christiansen is a CISSP- and CISA-certified information security specialist, with strong domain knowledge in disaster recovery, IAM (Identity & Access Management), risk management, and vulnerability testing. His profile suggests a highly technical and governance‑oriented security leadership role.
Leading the Way in Cybersecurity
These ten CISOs exemplify the evolving role of cybersecurity leaders in Germany. They are setting the standard for strategic, business-aware security leadership. Observing their work and initiatives provides valuable insight into the future of cybersecurity in one of Europe’s most technologically advanced nations.