The automotive industry is undergoing one of the most significant technology transformations in its history. Software-defined vehicles, connected platforms, autonomous systems, electric drivetrains, and global digital supply chains have expanded the cyber attack surface far beyond traditional IT environments. Modern automotive CISOs must secure everything from enterprise systems and cloud platforms to manufacturing lines, dealer networks, and in-vehicle technologies, all while navigating complex regulatory requirements and safety-critical risks.
The following cybersecurity leaders are shaping how global automotive organizations approach resilience, governance, and innovation. Their work spans OEMs, mobility ecosystems, and multinational operations where cybersecurity is inseparable from product integrity, customer trust, and operational continuity.
Debbie West — Group Manager, Cybersecurity Risk and Operations Management, Toyota Motor North America
Debbie West is Group Manager for Cybersecurity Risk and Operations Management at Toyota Motor North America, where she leads a cross-functional team responsible for identifying, prioritizing, and mitigating cybersecurity risk across TMNA and its extensive North American supply chain of suppliers and dealers. She also guides CISO-level portfolio strategy, workforce planning, and long-term cybersecurity initiatives. A Toyota veteran since 2000, Debbie has more than 30 years of IT experience and has held nearly every role from programmer trainee to executive. She previously created Toyota’s North America Agile Practice, transforming IT to over 90 percent Agile and contributing to Toyota’s first Global Agile Book. Deeply committed to leadership development, Debbie is an executive sponsor for women’s advancement at Toyota and a global advocate for developing future technology leaders.
Jan Stamer — CIO & Acting CISO, Volkswagen International Belgium, Volkswagen Group
Jan Stamer serves as CIO and Acting CISO for Volkswagen International Belgium, overseeing IT strategy, operations, and infrastructure across the BeNeLux region. Alongside his CIO responsibilities, he leads information security strategy and governance, strengthening cyber resilience, regulatory compliance, and enterprise risk management. Jan’s career spans hands-on technical roles through senior leadership, with experience across infrastructure, cloud platforms, enterprise architecture, and cybersecurity. He is known for simplifying complex technology environments and aligning secure solutions with business objectives. With a strong background in IT governance, agile delivery, and cloud adoption, Jan plays a key role in ensuring Volkswagen’s regional operations remain resilient, secure, and future-ready.
Michael Hanley — Vice President & Chief Information Security Officer, General Motors
Michael Hanley is Vice President and Chief Information Security Officer at General Motors, where he leads global cybersecurity strategy for one of the world’s largest automotive manufacturers. Prior to GM, Mike served as CTO at GitHub, overseeing engineering and security, and previously held senior security leadership roles at Duo Security and Cisco following Duo’s $2.35 billion acquisition. His background also includes applied security research at CERT/CC supporting U.S. Department of Defense and Intelligence Community programs. Mike brings deep expertise in cloud security, large-scale security operations, and enterprise transformation, helping GM navigate the cybersecurity challenges of connected vehicles, global manufacturing, and digital ecosystems.
Michael Bunzel — Chief Information Security Officer, BMW Group
Michael Bunzel is a cybersecurity executive and lawyer with more than 20 years of experience in information security, risk management, and regulatory compliance across global enterprises. He previously served as Chief Information Security Officer for BMW Group Financial Services before taking on senior security leadership roles within BMW Group, including Corporate Security and R&D Automotive Security. Michael brings deep expertise in OEM cybersecurity challenges, including vehicle security, supply chain protection, industrial systems, and compliance with global standards such as ISO/SAE 21434, UN regulations, IEC 62443, and TISAX. With extensive international experience across EMEA, APAC, and the Americas, he helps shape security strategy in highly complex, matrix-driven automotive organizations.
Sébastien Blard — Chief Information Security Officer, Renault Group
Sébastien Blard is Chief Information Security Officer at Renault Group, where he leads cybersecurity strategy across a global automotive organization undergoing rapid digital and technological change. He joined Renault in 2023 after more than 17 years at SUEZ, including six years as CISO, where he built and led security programs for critical infrastructure and smart metering environments. Sébastien brings strong expertise in cybersecurity, crisis management, IoT security, and operational technology systems. At Renault, he focuses on strengthening cyber resilience, securing connected and industrial environments, and aligning security initiatives with innovation, safety, and business objectives across the group.
Elisa Romano, CIPP/E — Chief Information Security Officer & Head of Data Protection, Automobili Lamborghini S.p.A.
Elisa Romano serves as Chief Information Security Officer, Head of Data Protection, and Data Protection Officer at Automobili Lamborghini. She is responsible for establishing and maintaining the company’s information security and data protection strategy, ensuring compliance with global regulations, and managing cybersecurity risks across the organization. Elisa leads internal awareness and training initiatives, coordinates the Information Security and Data Protection Committee, and works closely with IT and business teams to embed security into projects and operational processes. Her work plays a critical role in protecting Lamborghini’s information assets while supporting innovation, brand integrity, and the company’s high-performance automotive operations.
Why Automotive CISOs Matter More Than Ever
As vehicles become increasingly software-driven and supply chains more interconnected, cybersecurity has become a core pillar of automotive safety, reliability, and brand trust. Automotive CISOs must balance innovation with resilience, regulatory compliance with speed, and global consistency with local execution.
The leaders highlighted here are setting the standard for how cybersecurity enables the future of mobility. Their influence extends beyond IT, shaping how automotive organizations design, manufacture, connect, and protect the next generation of vehicles and services.