Canada’s public sector is under more cyber pressure than ever, from securing national infrastructure to protecting sensitive citizen data and supporting critical government services. As cyber threats evolve, so too does the need for leaders who can guide large, complex organizations through digital risk, policy change, and operational resilience. In this environment, “CISO” isn’t always a job title; it’s a role that can exist in multiple forms across federal, provincial, and agency structures.
This list highlights Canadian public-sector cyber leaders who are shaping the country’s security posture today. Some may not carry the formal “CISO” title anymore, or have moved into new leadership roles, but their influence and impact in the industry remain strong. Their work continues to set standards for cyber governance, incident response, and national defense.
Rajiv Gupta — Head, Canadian Centre for Cyber Security (Communications Security Establishment Canada)
Rajiv Gupta leads Canada’s national cyber authority, responsible for coordinating cyber security policy, operational guidance, and incident response across government and critical infrastructure. As the head of the Canadian Centre for Cyber Security, he is at the center of national efforts to protect Canada’s digital sovereignty and defend against state-level threats.
Po Tea-Duncan — Chief Information Security Officer, Government of Canada
Po Tea-Duncan has a long-standing career spanning more than 26 years in the federal government, serving as the Government of Canada’s CISO and Executive Director of Cyber Security. Her leadership has helped shape cyber strategy across multiple government departments and helped strengthen the country’s public-sector security posture.
Sami Khoury — Government of Canada Senior Official for Cybersecurity (Communications Security Establishment Canada)
As a senior official within the Communications Security Establishment, Sami Khoury is part of the federal cybersecurity leadership ecosystem that coordinates national cyber-defense strategy and operations. While not a traditional CISO title, his role is critical to shaping the government’s cybersecurity direction and collaboration across public and private sectors.
Mohammad Qureshi — Corporate Chief Information Officer / Associate Deputy Minister, GovTechON (Ontario Government)
Mohammad Qureshi is Ontario’s senior technology executive and former Chief Security Officer, now serving as Corporate CIO and Associate Deputy Minister for GovTechON. His work spans enterprise technology modernization, digital transformation, and security governance for one of Canada’s largest provincial IT organizations.
Sherry Rumbolt — Senior Cybersecurity Strategist, Treasury Board Secretariat
Sherry Rumbolt serves as a Senior Cybersecurity Strategist at the Treasury Board Secretariat and is currently assisting Public Services and Procurement Canada (PSPC) with the Human Capital Management organization. Her work focuses on the cybersecurity and security architecture components of the Government of Canada’s new HR and Pay Transformation Project, a highly visible, high-impact initiative with national significance. With deep technical expertise and decades of public-sector experience, she remains a trusted leader shaping how large-scale government systems are secured and modernized.
Kent Schramm — Director, Integrity and Security, Office of the Superintendent of Financial Institutions Canada
Kent Schramm leads integrity and security for OSFI, overseeing cybersecurity risk management in Canada’s financial regulatory environment. With past leadership roles in Ontario government cyber security and consulting, Schramm brings deep expertise in protecting critical financial systems and infrastructure.
Atul Deut — Vice President & Chief Information Security Officer, Export Development Canada
Atul Deut serves as VP and CISO at Export Development Canada, a federal Crown corporation. His leadership focuses on securing the organization’s international trade and financial services infrastructure, ensuring the integrity and protection of critical systems and data.
Jonathan Ouellet — Director General, Cyber Defence (Communications Security Establishment Canada)
Jonathan Ouellet oversees Canada’s cyber defense operations within the Communications Security Establishment. As Director General of Cyber Defence, he plays a central role in defending federal networks, coordinating threat response, and supporting national cyber security objectives.
Bridget Walshe — Associate Head, Canadian Centre for Cyber Security (Communications Security Establishment Canada)
Bridget Walshe serves as Associate Head of the Canadian Centre for Cyber Security, supporting the leadership team in managing national cyber security priorities and coordinating strategic initiatives across government. Her role places her among the most influential public-sector cyber leaders in Canada.
Why These Leaders Matter Now
In a world where cyber risk is now a constant operating condition, Canada’s public-sector security leaders are building the frameworks that protect citizens, governments, and critical infrastructure. Whether they carry the CISO title or not, these leaders are setting the standard for how the country responds to threats, secures digital transformation, and builds resilience for the next generation of cyber challenges.