In today’s rapidly evolving digital landscape, the role of the Chief Information Security Officer (CISO) has never been more critical. London, as a global financial, technological, and academic hub, is home to some of the most innovative and strategic cybersecurity leaders in the world. From protecting high-stakes financial systems to safeguarding academic research and digital consumer platforms, these CISOs are not only defending against threats but shaping the future of secure business operations.
This list highlights ten leaders whose expertise, vision, and influence make them standouts in the city’s cybersecurity ecosystem.
Matt Broomhall — Lloyd’s
Matt Broomhall currently leads security for Lloyd’s of London, guiding its cyber‑resilience and risk posture as the insurance market pursues “huge digital ambitions.” He is also Co‑Chair of the UK & Ireland CISO Community, a role that signals peer recognition and influence across the region’s security leadership. Before Lloyd’s, he held roles including IT Audit Director at BP and CISO at TUI, where he built up solid credentials leading a cyber transformation programme. Under his leadership, Lloyd’s has emphasised embedding “security‑first” mindsets throughout the business, ensuring that security decisions align with business goals.
Sarah Lawson — GALLOS Technologies
Sarah Lawson recently joined Oxford University Press as Director, bringing extensive experience from her time at top academic institutions and tech advisory boards. She balances her leadership role with contributions to GALLOS Technologies’ CISO Advisory Board, where she advises on emerging threats and strategic cyber initiatives. Her career reflects a blend of operational security, governance, and education-focused IT leadership, emphasizing secure digital transformation in academic and publishing environments.
Dexter Casey — Centrica
Dexter Casey currently heads security and technology risk at Centrica, a major player in the UK energy sector. As Group CISO, he navigates one of the most challenging security domains where cyber threats can have a critical national impact. Casey speaks publicly about the evolving role of CISOs, arguing that technical depth, adaptability, and an ability to “sell” security internally are more important than ever.
Derek Cheng — Deliveroo
Derek Cheng brings over 27 years of experience in cyber/information security, risk management, and data protection. At Deliveroo, he leads the security strategy for a rapidly evolving global food-tech platform, developing and maturing large security teams while ensuring executive oversight of critical risks. Cheng’s career spans Fortune 500 companies across multiple industries, giving him a deep perspective on scalable security and strategic risk management.
Joseph Da Silva — Johnson Matthey
Joseph Da Silva is an accomplished information security leader who has built and led multidisciplinary teams across IT, security, and business functions for blue-chip organisations. He has a track record of improving operational performance, securing funding for initiatives, and communicating complex cybersecurity risks to board-level stakeholders. His approach is pragmatic, risk-focused, and aligned with business goals, particularly in regulated sectors.
Da Silva also actively engages with the wider cybersecurity community, speaking at conferences across Europe and contributing to industry publications. He earned his PhD in cybersecurity in 2023 and holds certifications including CCISO, CISM, and BCS, demonstrating both academic and practical expertise.
Neil Dudleston — Specsavers
Neil Dudleston serves as Global CISO at Specsavers, the well‑known optical and healthcare retail brand. As Global CISO in a retail‑health organisation, his remit likely spans data privacy, customer data protection, regulatory compliance, and global‑scale IT infrastructure, balancing patient confidentiality with commercial operations.
Andy Piper — Barclays
Andy Piper leads cybersecurity for Barclays’ Investment Bank, overseeing regulatory compliance, enterprise risk, and operational security across a global banking division. He has extensive experience designing cybersecurity frameworks, implementing controls, and providing assurance to executives and regulators. Piper’s work ensures that cyber initiatives align closely with business strategy while maintaining robust governance and reporting.
Before his current role, Piper served as Director of Cyber Security Frameworks & Oversight, leading a team responsible for global security standards and controls. He holds multiple certifications, including CISA, CISM, CRISC, ISO27001, and COBIT, reflecting his deep expertise in both regulatory and operational cybersecurity. His career demonstrates a focus on building resilient, compliant, and strategically aligned security programs in highly regulated industries.
Michael Forbes — Morrisons
Michael Forbes is listed as the CISO of Morrisons, a major UK supermarket chain. In retail, especially supermarkets, cyber risk crosses point-of-sale systems, payment data, supply chain logistics, and customer data, making a CISO’s role both broad and critical. His appointment signals Morrisons’ recognition of cybersecurity as a core business enabler, not just a technical function.
Toks Oladuti — Dentons
Toks Oladuti appears on the UK & Ireland CISO Community roster as Global CISO for Dentons. As head of security for one of the world’s largest law firms, his remit likely includes protecting sensitive legal communications and client data confidentiality, ensuring compliance across jurisdictions, and addressing law-firm-specific threats such as insider risk, privileged access, and cross-border data regulation.
Helen Rabe — BBC
Helen Rabe serves as CISO at the BBC. Working at the BBC means safeguarding a vast and complex digital estate, spanning editorial systems, streaming services, broadcast infrastructure, and global content distribution. In a media and broadcasting environment, cyber risk also includes protecting journalistic integrity, source confidentiality, and compliance with regulations across many countries, making her role especially high‑stakes and strategically important.
Driving Security Forward
The CISOs featured here demonstrate how security leadership extends far beyond technical expertise. They are strategic thinkers, business partners, and industry influencers, each contributing to their organisations’ resilience while advancing cybersecurity as a profession. By combining governance, risk management, and innovation, these leaders are setting the standard for what effective, forward-looking security looks like in London, and their work continues to inspire the next generation of cybersecurity professionals.