Finland’s software industry powers everything from construction and procurement platforms to cloud-native analytics, enterprise resource planning, automation, and secure connectivity. In this environment, security leaders are not just protecting internal systems. They are securing products, cloud architectures, data flows, and customer trust at scale.
The CISOs featured here stand out for embedding security into software development, governance, and cloud transformation while balancing innovation with resilience.
Juha Ali-Melkkilä — Chief Information Security Officer, Vastuu Group Oy
Juha Ali-Melkkilä brings more than 25 years of experience across multiple industries and technologies into his role as Chief Information Security Officer at Vastuu Group Oy. His expertise spans cyber risk management, security architecture, network and product security, and business continuity. With deep technical grounding and strong governance capability, he focuses on building cybersecurity strategies that enable modern digital services while protecting critical operations. His profile reflects a seasoned security leader who combines architectural depth with executive-level oversight in a product-driven software environment.
Meri Löfman — Chief Information Security Officer, Brighthouse Intelligence Oy
Meri Löfman combines long-standing software engineering expertise with strategic security leadership. With experience at global technology companies including Nokia and Microsoft before joining Brighthouse Intelligence Oy, she brings strong product-level understanding into her Chief Information Security Officer role. Her background in security solutions, software development, and leadership positions her to embed security directly into development processes and innovation initiatives. She represents a security leader who understands both code and governance.
Mika Muurinen — Chief Information Security Officer, Visma Finland
Mika Muurinen is an experienced security governance leader with deep expertise in ISO 27001 implementation, Information Security Management Systems, privacy, and regulatory compliance including GDPR. His background spans software development, architecture, product management, and business processes, giving him broad visibility across enterprise software ecosystems. At Visma Finland, he focuses on strengthening governance frameworks, managing security risks and incidents, and integrating security awareness and resilience into large-scale cloud services. His profile reflects a governance-driven CISO who aligns structured compliance with agile software delivery.
Tommi Särkkä — Chief Information Security Officer and Chief Technology Officer, Pinja Group
Tommi Särkkä brings a rare dual perspective as both Chief Information Security Officer and Chief Technology Officer at Pinja Group. Having progressed through software development, project management, service leadership, and executive technology roles, he understands product lifecycle and operational complexity in depth. His combined responsibilities allow him to integrate cybersecurity directly into technical strategy, architecture, and development governance. This dual mandate is particularly powerful in software organizations where secure engineering must be tightly aligned with innovation and delivery velocity.
Nicolas Gabriel-Robez — Chief Information Security Officer, Sievo
Nicolas Gabriel-Robez is a senior cybersecurity and governance executive with more than 25 years of global experience. His expertise includes ISO/IEC 27001 Information Security Management System implementation, IT security governance aligned with ISO/IEC 38500, privacy leadership, and international compliance frameworks such as PCI DSS and SWIFT Customer Security Controls Framework. At Sievo, he brings a structured, business-aligned security model that reinforces resilience, regulatory readiness, and stakeholder trust. His leadership reflects a mature governance approach tailored to internationally operating software companies.
Pekka Jalonen — Chief Information Security Officer, Quanscient
Pekka Jalonen combines hands-on technical architecture expertise with strategic security leadership. With strong experience in cloud platforms, automation, artificial intelligence, and regulated environments, he focuses on embedding security into scalable, cloud-native ecosystems. At Quanscient, he has established and led the information security function from a business-driven perspective, aligning governance, ISO/IEC 27001 controls, and SOC 2 requirements with product and engineering workflows. His approach emphasizes automation maturity, secure-by-design architecture, and practical risk management.
Eetu Halmela — Chief Information Security Officer, Cinia
Eetu Halmela has progressed from building and managing a 24/7 Security Operations Center to leading cybersecurity at the executive level. As Chief Information Security Officer at Cinia, he oversees information security governance, technical cybersecurity, physical security, and compliance frameworks including ISO 27001, NIS2, and national security standards. His background in operational security maturity provides strong foundations for executive-level strategy. He represents a leader who combines hands-on security operations depth with structured governance oversight.
Building Secure Software at Scale
In Finland’s software industry, cybersecurity is inseparable from product quality and customer trust. Whether delivering analytics platforms, cloud services, infrastructure software, or digital compliance tools, companies operate in environments where vulnerabilities can directly impact global customers.
The CISOs featured here stand out for integrating governance with engineering, embedding compliance into agile development, and aligning cybersecurity with long-term business strategy. In a sector defined by innovation and rapid evolution, their leadership ensures that security remains a competitive advantage rather than a constraint.