Nevada’s gaming industry presents one of the more demanding cybersecurity environments in any sector. Casino floors operate as converged IT and OT environments where point-of-sale systems, gaming machines, surveillance infrastructure, hotel operations, and loyalty platforms all run on interconnected networks under the watchful eye of state gaming regulators. A breach is not just a data event. It is a regulatory incident, a reputational crisis, and in many cases a shutdown risk. The CISOs in this feature are securing those environments across resort casinos, regional properties, multi-site operators, and the global gaming technology platforms that power the machines themselves.
Shanmugam Muthukumarasamy — Head of Information Security, Peppermill Resort Spa Casino
Shanmugam Muthukumarasamy arrived at Peppermill Resort in Reno in February 2024, bringing a career built across insurance technology, enterprise cloud architecture, and large-scale application modernization. At Farmers Insurance, he spent a decade progressing from enterprise architect through engineering manager and senior engineering manager to director of IT, leading a modernization roadmap that decommissioned more than 40 legacy applications and generated $150 million in cumulative operational ROI. At Peppermill, he architected an enterprise zero trust architecture and cloud-native SOC, reducing critical incidents by 30 percent, built a Python-based SOAR framework that automated containment of more than 50 high-fidelity threats annually and cut mean time to respond by 40 percent, and achieved full compliance with Nevada Gaming Board regulations and PCI DSS 4.0 within twelve months. His background in software engineering and cloud architecture gives him a security perspective grounded in how systems are built, not just how they are protected.
Alex Mutschler — Chief Information Security Officer, Circa Resort and Casino
Alex Mutschler stepped into the CISO role at Circa Resort and Casino in January 2023 after spending more than two years as senior network architect at the same property, giving him detailed knowledge of the infrastructure he was now responsible for securing. Before Circa, he spent nearly three years as senior enterprise interactive architect at MGM Resorts International, managing network infrastructure across more than 550 devices spanning multiple properties and states. His earlier career includes senior infrastructure engineering at Sunflower Bank across a three-company merger integration and network administration roles in manufacturing. At Circa, he overhauled the cybersecurity and infrastructure program, elevated the company’s security maturity by approximately 350 percent through a full framework gap assessment and remediation, introduced formal business continuity and incident response governance for the first time, and implemented 24/7 security monitoring at 90 percent lower cost than a traditional internal SOC. Employee-driven risk events dropped by more than 75 percent even as the employee base tripled.
Jeffrey Drake — Vice President and Chief Information Security Officer, Station Casinos
Jeffrey Drake has spent more than eight years at Station Casinos, progressing from security engineer through director of cyber security before stepping into the VP and CISO role in December 2024. Before Station Casinos, he spent a year as a senior security engineer at Tangible Security and more than four years as a senior network security engineer at Selling Source, managing production and corporate network security across Las Vegas and Kansas City offices with accountability for SIEM, vulnerability management, DLP, and firewall infrastructure. Before his private sector career, he spent more than six years in the United States Air Force in network operations roles, including chief of network operations at Creech AFB where he managed 25 personnel supporting three distinct classified networks for remote piloted aircraft globally, and a tour supporting the Air Force Satellite Control Network at Schriever AFB responsible for maintaining resources valued at $458 million. That military network operations foundation, combined with a career built entirely inside the Las Vegas gaming security ecosystem, gives him a profile shaped by operational discipline and sector-specific depth.
Xochitl Monteon — Senior Vice President and Chief Information Security Officer, Aristocrat
Xochitl Monteon joined Aristocrat in April 2025 as SVP and CISO, leading global information security strategy for one of the world’s leading gaming content and technology companies, a top-20 ASX-listed enterprise with more than 7,300 employees across 20-plus locations whose electronic gaming machines, casino management systems, and mobile gaming platforms collectively entertain millions of players every day. Her background spans more than twenty-five years across some of the most recognizable names in technology and financial services: VP of cybersecurity risk and governance and chief privacy officer at Intel, managing director of global technology at JPMorgan Chase, senior director of IT governance and risk management at Intel Security, and director-level roles at PayPal and eBay. She began her career running her own business continuity consulting firm and earlier managed global business continuity at Sun Microsystems. She advises NightDragon on cybersecurity investment strategy, serves on the UNLV Cybersecurity Advisory Board, sits on the board of Right To Be, and is an executive member of the Latino Corporate Directors Association.
Bryan Green — Senior Vice President and Chief Information Security Officer, MGM Resorts International
Bryan Green joined MGM Resorts International as SVP and CISO in March 2026, bringing a career that most recently included two and a half years as CISO at Andreessen Horowitz, where he safeguarded digital assets and sensitive financial data across international offices and investment operations while advising founders and portfolio executives on cyber due diligence and investment risk. Before a16z, he served as CISO at Zscaler, reporting to the CFO and accountable to the board and audit committee, and as business information security officer at Salesforce, where he was the first to hold that title at the company. Earlier in his career he spent nine years at UC Davis Health building the health system’s first comprehensive security program from the ground up and five years at Blue Shield of California directing security engineering and operations with a 30-plus person team and a $12 million budget. He began his career as a computer communications systems controller in the United States Air Force, honorably discharged. MGM Resorts, which operates more than two dozen hotel and gaming properties globally, gets a CISO whose experience spans healthcare, cloud security, venture capital, and some of the most closely watched technology companies in the industry.
The House Always Needs a Security Leader
Nevada’s casino and gaming sector has become one of the most scrutinized cybersecurity environments in the country, not least because high-profile incidents in recent years demonstrated exactly what is at stake when gaming operations are disrupted. The leaders in this feature are building and sustaining security programs across resort properties, regional casinos, and global gaming technology platforms where the regulatory bar is high, the operational complexity is real, and the consequences of a failure are visible to everyone. That pressure sharpens the work.
Discover more cybersecurity leaders in Nevada:
