Cybersecurity remains a top priority for organizations across Spain, as companies face increasingly sophisticated cyber threats. At the helm of this defense are the country’s Chief Information Security Officers (CISOs), who not only protect critical data but also shape strategic technology decisions. From banking and energy to healthcare and digital services, these leaders are driving innovation, resilience, and security across their industries.
Here are 10 CISOs to watch in Spain, recognized for their achievements, influence, and leadership in the cybersecurity landscape.
Hazel Díez Castaño — Banco Santander
Hazel Díez Castaño was appointed Global Chief Information Security Officer (CISO) of Banco Santander in June 2023. She brings over 20 years of experience in multinational environments, having held leadership roles in governance, risk, and compliance (GRC) and security architecture. Before Santander, she was Global Head of Cyber GRC and led IT risk functions in companies such as Aviva. She is also an advocate for increasing female representation in cybersecurity. In a Santander WomenNOW summit, she spoke powerfully about role models and the need to make security more accessible and “cool” for younger generations.
Raúl Castaño — Redeia
Raúl Castaño is the Responsible for Cybersecurity (CISO) at Redeia, Spain’s major electricity grid operator. He has spoken publicly at CISO and security forums, representing the energy infrastructure sector’s perspective on resilience and the digital security of critical national infrastructure. His role is especially significant given the increasing cyber threats targeting energy and grid systems, making his leadership critical to Spain’s infrastructure security.
Jesús García del Valle — Santander Spain
Jesús García del Valle serves as CISO of Banco Santander Spain and is also the Global Head of Cyber Security Risk & Control. His journey spans from Deloitte to key strategic roles in risk and security, and he’s noted for combining a strong technical vision with a human-centric leadership style. He’s part of the advisory board of CyberLideria, reflecting his influence in the Spanish cybersecurity executive community.
Luis Ballesteros Martín — WiZink Bank
Luis Ballesteros Martín has been CISO of WiZink Bank since its early days. He holds a degree in Mathematics from the Universidad Complutense de Madrid and has over 30 years of experience in banking. Before WiZink, he led the Information Security and Business Continuity department at Citibank. Additionally, he is a founding member of CONTINUAM, a non-profit focused on business continuity and resilience in Spain and Latin America.
Josep Bardallo — Grupo Recoletas
Josep Bardallo is the CIO, CISO, and DPO of Recoletas Red Hospitalaria, a major private hospital group in Spain. He also works as a Security Consulting Manager at A2Security and acts as a virtual CISO (vCISO) for other companies. Under his leadership, Recoletas implemented a scalable solution to inspect SSL/TLS traffic without degrading network performance. Bardallo is known for his long tenure in IT and security, his teaching work, and his involvement in cloud, privacy, and managed services.
Javier Gayoso Enrique — Banca March
Javier Gayoso has been the Chief Information Security Officer of Banca March since 2021. He holds a degree in Physics from the University of the Balearic Islands and a Master’s in Information Security from UCAV. His background also includes roles in development, systems, and architecture, giving him a broad technical foundation.
Jesús Escoredo — Indra Sistemas
Jesús Escoredo is the Chief Information Security Officer at Indra, one of Spain’s largest IT services and defense companies. With more than 20 years in cybersecurity, he previously led security operations in roles across consultancy and technology firms. In public forums, he has emphasized the importance of agile incident response, risk management, and building a security culture.
Eva Cristina C. Cañete — Unicaja Banco
Eva C. Cañete has been recognized as the Information Security Manager/CISO at Unicaja Banco. Her work has been featured in Ciberseguridad TIC magazine, highlighting her approach to aligning business strategy with cybersecurity controls. She has spoken about treating security as a strength, not a cost, ensuring that cybersecurity supports business goals while complying with regulations.
Alberto López Rodríguez — Solaria Energía y Medio Ambiente
Alberto López Rodríguez serves as Global Head of IT and Cybersecurity (CISO/CIO) at Solaria Energía y Medio Ambiente, a leading Spanish solar energy company. In addition to managing both IT and OT (operational technology) domains, he has earned recognition: he was named CIO of the Year 2022 and a Top 50 Cybersecurity Blue Team Member Spain. He emphasizes the importance of integrating cybersecurity into cloud migrations and renewable energy infrastructure, making security a pillar of Solaria’s digital transformation.
Shaping the Future of Cybersecurity Across Industries
These 10 CISOs in Spain represent a cross-section of industries and showcase the diversity and depth of cybersecurity leadership in the country. Whether they are driving risk programs at major financial institutions, protecting critical infrastructure, or bridging IT and OT in the renewables sector, each one has proven influence and impact. Watching their moves, strategies, and innovations gives insight not just into how Spanish companies are defending themselves, but also into broader trends in global cyber risk management.