Spain’s legal services sector sits at the intersection of sensitive data, regulatory scrutiny, and growing digital dependency. Law firms and professional services organizations are no longer just custodians of privileged information; they are active targets for cyber espionage, ransomware, and supply chain attacks. The leaders below stand out for embedding cybersecurity into legal operations, governance, and advisory models while balancing confidentiality, compliance, and business enablement.
Jonás Delgado Mesa — Cybersecurity Director, Andersen in Spain
Jonás Delgado Mesa leads cybersecurity strategy and execution within a complex professional services environment, focusing on protecting critical digital assets while enabling business operations. His role spans risk assessment, regulatory alignment, policy development, and the deployment of innovative security solutions, with particular emphasis on safeguarding sensitive information and critical infrastructures in a legal and advisory context.
Carlos Martinez Wahnon — Chief Information Security Officer, Pérez-Llorca
Carlos Martinez Wahnon is a technology and security leader with more than fifteen years of experience connecting IT, cybersecurity, and business strategy. He has built and scaled information security and data protection programs in high-visibility organizations, optimizing budgets, managing complex projects, and fostering resilient security cultures. His background combines hands-on security leadership with strong vendor management and strategic planning capabilities.
Juan López-Rubio Fernández — Senior Director of Cybersecurity, Alvarez & Marsal
Juan López-Rubio Fernández brings deep expertise in security architecture, cloud risk, and fraud prevention within advisory-led environments. His work spans the design of cloud-based security services, development of security and fraud prevention products, and leadership of agile security teams. He combines technical depth with business development, account management, and people leadership, supporting clients across the full lifecycle of cybersecurity engagements.
Carlos Borrego Sacristán — Chief Information Security Officer, Ecix
Carlos Borrego Sacristán leads cybersecurity programs focused on governance, service delivery, and strategic execution. With over a decade of experience, he has managed security master plans, technical security offices, audits, and multidisciplinary teams under high-pressure conditions. His approach emphasizes operational rigor, team development, and delivering measurable security outcomes aligned with business objectives.
Alfredo Pérez García — Chief Information Security Officer and Senior Manager of Outsourcing Services, Garrigues
Alfredo Pérez García combines long-standing security leadership with deep experience in outsourcing and service management. Over two decades, he has overseen information security alongside large-scale service operations, aligning cybersecurity with business continuity and client service delivery. His profile reflects the importance of stable, governance-driven security leadership in large legal organizations with complex operational footprints.
Securing Trust in Spain’s Legal Services Sector
Cybersecurity in legal services is fundamentally about trust—protecting privileged information, ensuring regulatory compliance, and enabling advisors to operate securely in a digital-first world. The leaders featured here exemplify how security leadership in law firms and advisory organizations has evolved into a strategic function, one that safeguards confidentiality while supporting growth, resilience, and client confidence.