Sweden’s management consulting sector sits at the intersection of strategy, transformation, and technology execution, often with privileged access to client environments, sensitive commercial data, and high-impact decision-making. That makes cybersecurity leadership in consulting uniquely demanding: leaders must mature internal security programs, protect multi-tenant delivery models, and translate risk into pragmatic guidance that supports growth and trust. The CISOs and cybersecurity leaders below stand out for building security into consulting operations, scaling cyber programs, and leading complex engagements across regulated and high-change environments.
Jakob Åsell — Chief Technology Officer and Chief Information Security Officer, Modular Management
Jakob Åsell serves as Chief Technology Officer and Chief Information Security Officer at Modular Management, where he supports both the consultancy business and the development and delivery of the PALMA SaaS platform. His work spans cloud architecture design, infrastructure-as-code for resilience and disaster recovery, and security and robustness across the product lifecycle. He also brings deep experience in modular design methodologies and the CAD/PDM/PLM ecosystem, helping clients understand product architecture value, quantify transformation impact, and model profitable future scenarios.
Stefan Tapper — Chief Information Security Officer, Grant Thornton Sweden
Stefan Tapper is the Chief Information Security Officer at Grant Thornton Sweden, with a progression from information security specialist into executive security leadership. His experience includes information security roles at Sweco and earlier service delivery leadership across Atos and Sopra Steria, which supports a practical, delivery-oriented approach to security. In his current role, he leads information security governance and capability development within a major professional services environment.
Carl-Magnus Brandt — Chief Information Security Officer, Aspia
Carl-Magnus Brandt is the Chief Information Security Officer at Aspia, bringing more than 14 years of experience across operational and strategic information security management. He is known for a pragmatic, risk-based mindset and has led assignments in government and finance, as well as consulting work involving ISO 27001, GDPR, and threat and risk analysis. His approach emphasizes security outcomes that work in practice, not just on paper.
Sanida Saliovski — Director of Cybersecurity, KPMG Sweden
Sanida Saliovski is the Director of Cybersecurity at KPMG Sweden, leading large-scale cybersecurity programs across Europe and globally. Her work focuses on maturity assessments, certification initiatives, and long-term resilience strategies, including orchestrating global teams across complex multi-year engagements. She previously led the establishment and scaling of a national cyber practice in Sweden, defining service portfolios, operating models, and delivery approaches aligned to client needs and regulatory expectations.
Eric Svensson — Head of IT Operations and Cybersecurity, Ludvig & Co
Eric Svensson leads IT operations and cybersecurity at Ludvig & Co, with a strong track record in transformation environments and high-change programs. He brings extensive experience with acquisitions and company integrations, paired with a focus on procurement, automation, and continuous improvement. His leadership emphasizes transparency, efficiency, and building operational capability that scales through change.
Marcus Holmberg — Chief Information Security Officer, SSG Standard Solutions Group
Marcus Holmberg is the Chief Information Security Officer at SSG Standard Solutions Group, with a background spanning security architecture, cloud solution architecture, and advisory work. His experience includes work at Orange Cyberdefense and prior roles across consulting and public-sector architecture environments. At SSG, he holds leadership responsibility for cybersecurity initiatives, with focus areas that include automation, artificial intelligence, and governance-aligned security execution.
Why Sweden’s Consulting Cyber Leaders Matter
Management consulting firms increasingly deliver digitally enabled services—cloud platforms, managed delivery models, and long-running transformation programs, making cybersecurity a core differentiator for trust and resilience. The leaders above reflect the direction of modern consulting security: risk-based governance, scalable delivery controls, and the ability to translate complex cyber requirements into execution that clients can actually sustain.