San Francisco stands at the forefront of technological innovation, with its dynamic ecosystem of startups, global tech giants, and financial institutions driving rapid digital transformation. Yet this growth brings complex cyber risks, from securing sensitive customer data to protecting critical infrastructure in a highly regulated environment. In this climate, cybersecurity leaders must not only defend against threats but also enable innovation, build trust, and align security strategy with broader business goals. The following CISOs exemplify the caliber of leadership shaping San Francisco’s resilient digital landscape.
Rick Orloff – VP & Chief Information Security Officer, Pure Storage
Rick Orloff brings over two decades of experience leading global security and risk programs, including at Apple and Pure Storage. He views cybersecurity as a strategic enabler of innovation and growth, overseeing enterprise-wide risk management, cloud and product security, GRC, cyber investigations, national security programs, and global resiliency. Known for his “see-around-corners” approach, Rick aligns security with business priorities while building high-performing teams that deliver measurable outcomes.
Krishnan Chellakarai – VP & Chief Information Security Officer, Gilead Sciences
Krishnan Chellakarai has more than 30 years of IT and security experience in global biopharmaceutical and life sciences environments. He is a trusted strategic advisor to boards and executives, focusing on digital resilience, intellectual property protection, and enterprise risk management. Krishnan’s leadership emphasizes global team development, innovation, and collaboration across technical and business stakeholders to support organizational goals.
Bryan Green – Chief Information Security Officer, Andreessen Horowitz
Bryan Green is a board-trusted, global-scale CISO with over 25 years of experience leading cybersecurity across technology, venture capital, financial services, healthcare, and government. He provides pragmatic guidance on governance, risk, and execution, advising executives and founders in high-growth, highly regulated environments. Bryan’s approach balances deep technical expertise with scalable strategies that enable innovation while maintaining organizational trust.
Leda Muller – Chief Information Security & Privacy Officer, R&DE, Stanford University
Leda Muller leads cybersecurity and privacy initiatives at Stanford University with a focus on aligning technology programs with organizational strategy. She excels at mentoring teams, fostering collaboration, and executing complex programs, combining strategic vision with hands-on leadership. Leda’s work ensures secure, resilient operations while promoting a culture of awareness and accountability across the university community.
James Dolph – Chief Information Security Officer, Guidewire
James Dolph is a pragmatic executive passionate about building trust with customers, partners, and employees while enabling organizations to deliver securely at speed. Previously VP of Product Security at Salesforce, he transformed secure development lifecycles and built world-class teams supporting global products. His leadership emphasizes transparency, collaboration, and talent development across technical and business stakeholders.
Subra Kumaraswamy – SVP & Chief Information Security Officer, Visa
Subra Kumaraswamy oversees Visa’s cybersecurity and privacy programs, bringing expertise in cloud, network, and systems security. He drives secure payments and e-commerce services, vulnerability management, and global team development. Subra combines deep technical knowledge with strategic leadership to ensure Visa remains resilient and secure in the rapidly evolving digital payments landscape.
Charles Tsai – Chief Information Security Officer, Federal Reserve Bank of San Francisco
Charles Tsai has extensive experience guiding risk management and security strategies in highly regulated environments, including service to the NSA, FBI, CIA, and multiple federal agencies. As a member of advisory boards for the Department of Defense, he provides insight on organizational security and risk oversight. Charles is recognized for his expertise in holistic security planning, incident response, and mentoring security professionals across complex organizations.
Shaping San Francisco’s Cybersecurity Future
San Francisco’s cybersecurity landscape is defined by innovation, regulation, and the rapid evolution of digital threats. The leaders featured here demonstrate that effective security leadership requires not only technical expertise but strategic vision, the ability to cultivate high-performing teams, and a commitment to enabling business growth while mitigating risk. Their work ensures that the city’s technology and financial sectors remain resilient, trusted, and positioned to lead in the global digital economy.