Pennsylvania’s financial services sector includes banks, investment firms, fintech providers, and retirement services platforms that manage enormous volumes of sensitive financial data. These organizations operate under strict regulatory oversight while facing increasingly sophisticated cyber threats. Chief Information Security Officers in this industry must balance innovation and operational efficiency with regulatory compliance, risk governance, and the protection of customer trust. The following leaders are helping shape resilient security programs across Pennsylvania’s financial ecosystem.
Alex Petrow — Chief Information Security Officer, Ascensus
Alex Petrow serves as Chief Information Security Officer at Ascensus, where he leads enterprise information security strategy and compliance initiatives for a major provider of retirement and savings services. Over more than a decade with the organization, he has held multiple security leadership roles while overseeing the development and expansion of its cybersecurity program. Petrow’s experience includes managing risk and compliance initiatives, strengthening enterprise security architecture, and aligning information security with the organization’s broader operational and regulatory requirements.
Chris Stoneley — Chief Information Security Officer, Fulton Bank
Chris Stoneley leads information security and governance programs at Fulton Bank, focusing on enterprise risk management, regulatory compliance, and operational resilience. His career has centered on designing and implementing governance, risk, and compliance frameworks for large financial institutions. Stoneley’s expertise spans areas including cybersecurity risk analysis, vendor risk management, data protection, and enterprise control frameworks, leveraging standards such as NIST, ISO 27001, COBIT, COSO, OWASP, and ITIL to support sustainable security programs.
Jason Shockey — Chief Information Security Officer & Chief Security Officer, Cenlar FSB
Jason Shockey leads security and resilience initiatives at Cenlar FSB, a major mortgage loan subservicing company. With experience spanning both fintech and banking environments, he specializes in building regulator-aligned security programs that support product innovation while maintaining compliance with frameworks such as NIST, FFIEC, and GLBA. His leadership includes strengthening security governance, incident response, threat detection, identity and access management, and third-party risk oversight across complex financial ecosystems.
Kenneth Keenan — Chief Information Security Officer, Davidson Kempner Capital Management
Kenneth Keenan serves as Chief Information Security Officer at Davidson Kempner Capital Management, where he oversees cybersecurity strategy and data protection across the firm’s global operations. His background includes security leadership roles within major financial institutions and investment firms, with experience spanning detection technologies, SIEM operations, and enterprise security architecture. Keenan’s career reflects a strong focus on protecting financial systems while enabling secure operational growth.
Jeffrey Groff — Chief Information Security Officer, Univest
Jeffrey Groff leads cybersecurity strategy at Univest, overseeing the protection of banking systems and digital services across the organization. With a career spanning several decades in IT leadership and financial technology operations, Groff has guided the development of enterprise security programs while supporting business modernization. His experience includes managing banking systems, application development, and infrastructure operations that underpin secure financial services delivery.
Safeguarding Trust in the Financial System
In Pennsylvania’s financial services industry, cybersecurity leadership is central to maintaining the trust that customers place in banks, fintech platforms, and investment firms. These Chief Information Security Officers guide organizations through evolving regulatory expectations and emerging threats, ensuring that financial innovation continues on a secure and resilient foundation.
To explore how cybersecurity leadership operates within the state’s regulated banking institutions, read CISOs to Watch in Pennsylvania’s Banking Industry.