Virginia’s software sector includes companies building platforms for healthcare, cybersecurity, government services, and enterprise technology. These organizations often operate complex cloud environments while managing sensitive data and delivering mission-critical applications to customers across regulated industries. Cybersecurity leaders in this sector play a vital role in protecting development pipelines, securing software platforms, and ensuring compliance with evolving security standards.
The professionals below represent cybersecurity leadership helping strengthen security strategy across Virginia’s software industry.
Jacob Ferrell-White — Chief Information Security Officer, RxEOB
Jacob Ferrell-White serves as Chief Information Security Officer at RxEOB, where he leads cybersecurity strategy for the company’s healthcare technology platform. His responsibilities include protecting sensitive healthcare data, securing application infrastructure, and integrating security practices into the software development lifecycle.
Ferrell-White began his career at RxEOB in technical and development roles before advancing into security leadership. His background in software development, DevOps, and infrastructure architecture allows him to embed cybersecurity controls directly into application design, helping the organization maintain secure and reliable software systems.
Ivan Gil — Virtual Chief Information Security Officer, ePlus Security
Ivan Gil serves as a Virtual Chief Information Security Officer at ePlus Security, where he advises organizations across multiple industries on cybersecurity strategy, governance, and risk management. His work focuses on helping companies develop mature security programs while aligning cybersecurity investments with business objectives.
Gil supports organizations with regulatory compliance initiatives based on frameworks such as NIST, ISO 27001, and CMMC. His responsibilities also include incident response planning, risk assessments, penetration testing oversight, and security program development for organizations operating complex digital environments.
Ron Davis — Vice President and Chief Information Security Officer, ASRC Federal
Ron Davis is Vice President and Chief Information Security Officer at ASRC Federal, where he leads enterprise cybersecurity strategy for a large government services and technology organization. His role involves overseeing risk management, security policy development, and incident response capabilities across a global enterprise IT infrastructure.
Davis brings extensive experience in cybersecurity governance, enterprise security engineering, and risk management. He focuses on developing cost-effective security programs that balance operational requirements with strong cyber defense and regulatory compliance.
Brian Pettis — Chief Information Security Officer and Vice President of Technology, ClearForce, Inc.
Brian Pettis serves as Chief Information Security Officer and Vice President of Technology at ClearForce, where he oversees cybersecurity strategy and technology architecture for the company’s SaaS platform. His responsibilities include managing the organization’s Azure cloud environment, guiding product architecture decisions, and ensuring compliance with security standards such as SOC 2.
Pettis works closely with product and engineering teams to integrate cybersecurity into the company’s development roadmap. His leadership includes overseeing vulnerability management, penetration testing, and third-party security assessments while supporting secure product innovation.
Kevin Bellrose — Chief Information Security Officer, Verato
Kevin Bellrose serves as Chief Information Security Officer at Verato, where he leads enterprise cybersecurity and compliance strategy for a cloud-native healthcare identity platform. His work focuses on protecting sensitive healthcare data while enabling secure growth for the organization’s cloud services.
Bellrose oversees cloud security architecture, DevSecOps integration, enterprise risk management, and regulatory compliance programs including HITRUST, HIPAA, and SOC 2. With more than 18 years of experience across security and technology leadership roles, he focuses on building scalable security programs that strengthen trust with customers and partners.
Cybersecurity Leadership Across Virginia’s Software Industry
Software platforms power many of today’s most important digital services, from healthcare systems to enterprise platforms and government infrastructure. Cybersecurity leaders in this sector must secure development pipelines, protect sensitive data, and ensure applications meet strict security and compliance standards.
The professionals featured here represent a cross-section of cybersecurity leadership helping software companies across Virginia strengthen their security posture while continuing to deliver innovative technology solutions.
Readers interested in cybersecurity leadership across other sectors can also explore CISOs to Watch in Virginia’s Higher Education Industry, where security leaders protect research networks, academic systems, and large university technology environments.