North Carolina’s government administration sector depends on cybersecurity leaders who can protect public services, sensitive citizen data, financial systems, and critical internal operations across state, county, and local institutions. The executives in this group reflect the range of cyber leadership shaping government across the state, from statewide agencies and legislative bodies to county governments, municipalities, and health-focused public organizations.
Peter Miller — Chief Information Security Officer, North Carolina Office of the State Auditor
Peter Miller brings an unusually broad blend of audit, compliance, military, and security leadership experience to the North Carolina Office of the State Auditor, where he now serves as Chief Information Security Officer. His background spans financial services, healthcare, and public-sector environments, and he combines technical certifications with business and audit credentials that give him credibility across both security and governance functions.
That mix is especially relevant in a government oversight office, where cybersecurity has to be understood not only as a technical issue but also as a risk, compliance, and accountability issue. Miller’s emphasis on resilience, simplification, and cross-functional collaboration suggests a leader well suited to protecting sensitive state systems while helping turn security into an operational strength.
Mark Goodwin — Chief Information Security Officer, Buncombe County, North Carolina
Mark Goodwin has spent more than two decades working across corporate, local government, and federal government environments, giving him a broad perspective on how public-sector technology and cybersecurity programs need to operate. His profile highlights executive leadership, governance, and program management as core strengths, alongside deep familiarity with the realities of delivering secure services to citizens.
At the county level, that kind of perspective matters. Buncombe County’s cybersecurity needs sit at the intersection of public service delivery, operational resilience, and risk management, and Goodwin’s experience suggests a leader who understands how to tie policy, technology, and business management together in a disciplined way.
Lisa Jones — Chief Information Security Officer, Wake County
Lisa Jones brings a long track record in systems, network administration, and information security to her role as CISO for Wake County. Her background combines business-oriented IT education with hands-on technical depth, supported by well-known certifications including CISSP, MCSE, and CCNA.
That foundation makes her a strong fit for county government, where security leaders often need to bridge strategic oversight and technical execution. With experience protecting networks, systems, and information assets in complex environments, Jones represents the kind of practical, infrastructure-aware leadership that is essential to securing one of North Carolina’s largest counties.
Tom Taylor — Chief Information Security Officer, North Carolina General Assembly
Tom Taylor serves as Chief Information Security Officer for the North Carolina General Assembly, a role that places him at the center of protecting legislative systems and government operations. His background spans cybersecurity, cloud security, network security, vulnerability assessment, disaster recovery, digital forensics, and physical security, giving him a well-rounded view of enterprise protection.
That breadth is particularly important in a legislative environment, where continuity, confidentiality, and infrastructure security all matter. Taylor stands out as a government security leader with a broad technical toolkit and the ability to support a mission-critical institution where operational reliability and information protection are closely linked.
Chris Morris — Chief Information Security Officer, Town of Chapel Hill, NC
Chris Morris represents the kind of modern local-government CISO role that increasingly blends strategy, infrastructure oversight, vendor management, and day-to-day operational security. At the Town of Chapel Hill, he leads the organization’s cybersecurity strategy and program management while also overseeing infrastructure teams and a network of managed security providers and specialized vendors.
His profile highlights the reality of security leadership in resource-constrained public environments, where success often depends on prioritization, cross-functional governance, and translating technical risk into practical organizational decisions. Morris has built programs spanning policy, awareness training, phishing simulations, privileged access management, contract security review, and tabletop exercises, making him one of the clearest examples of comprehensive municipal cyber leadership in the state.
Pyreddy Reddy — Chief Information Privacy and Security Officer, North Carolina Department of Health and Human Services
Pyreddy Reddy leads one of the most expansive privacy and security mandates in North Carolina government as Chief Information Privacy and Security Officer at the Department of Health and Human Services. He was selected to create and lead the department’s executive office for privacy and security, building the structure, processes, and long-term vision needed to safeguard highly sensitive health and human services data.
His remit spans HIPAA activities, risk assessments, continuity planning, disaster recovery testing, incident management, vulnerability management, access control, and documentation governance. He is also notable for helping shape AI policies and procedures within DHHS, showing how public-sector cyber leaders are increasingly being asked to govern emerging technologies as well as traditional security risks.
Where North Carolina’s public-sector cyber leadership is taking shape
This group reflects the breadth of cybersecurity leadership operating across North Carolina government today. From audit and legislative environments to county government, municipal operations, and statewide health services, these leaders are helping define how public institutions manage risk, resilience, compliance, and trust in a more demanding threat landscape.
To explore more public-sector cybersecurity executives, visit the Government Administration tag.