Government administration operates under a fundamentally different security model than commercial sectors. Public authorities and municipalities must balance openness and transparency with national security interests, citizen privacy, and service continuity. They manage highly sensitive personal data, critical infrastructure systems, and services that society depends on daily, all while operating under strict legal frameworks such as GDPR, NIS2, and Sweden’s Security Protection Act.
The leaders below are shaping how Swedish government bodies strengthen information security, resilience, and trust in an increasingly digital public sector.
Oliver Zellweger — Chief Information Security Officer, Helsingborgs stad
Oliver Zellweger is the Chief Information Security Officer for Helsingborgs stad, where he leads and coordinates the city’s information security efforts to protect information assets and ensure compliance with laws and regulations. He brings experience across information security, data protection, risk management, and compliance, with hands-on leadership of GDPR and ISO 27001 programs. His work focuses on building sustainable security strategies, managing incidents and risks, and fostering a strong security culture that supports secure digital transformation in both public and private sector contexts.
Torbjörn Edvall — Chief Information Security Officer, Värmdö kommun
Torbjörn Edvall is the Chief Information Security Officer at Värmdö municipality, with more than two decades of experience spanning information security, business development, digital transformation, and leadership. He is responsible for developing, implementing, and managing the municipality’s Information Security Management System and overseeing data protection activities, while also serving in a compliance capacity. His approach emphasizes continuous improvement and embedding security into everyday municipal operations.
Calle Alm — Chief Information Security Officer, Hässleholms kommun
Calle Alm serves as Chief Information Security Officer for Hässleholms municipality, bringing many years of experience from the security and intelligence domain. His background supports a pragmatic approach to protecting municipal systems and information, with a focus on safeguarding public services, managing sensitive data, and supporting informed decision-making in a complex local government environment.
Bako Ali — Chief Information Security Officer, Sollentuna kommun
Bako Ali is the Chief Information Security Officer for Sollentuna municipality, where he leads and manages the organization’s information security work. He has extensive experience across risk and vulnerability analysis, ISMS implementation and auditing, compliance with ISO 27001 and ISO 27002, GDPR application, incident response, business continuity, and cloud security. With multiple certifications and a strong advisory background, he drives security programs that combine governance, culture change, and operational effectiveness within municipal services.
Daniel J. Jonsson — Chief Information Security Officer, Swedish Transport Agency
Daniel J. Jonsson is the Chief Information Security Officer at the Swedish Transport Agency, with a background spanning multiple industries and a strong foundation in information security management. His expertise includes data privacy, ISO 27001, risk management, and PCI DSS, supported by academic training from the University of Leicester and Royal Holloway, University of London. He works at the intersection of national infrastructure, regulatory oversight, and operational security in a highly visible government authority.
Roger Broberg — Chief Information Security Officer, Västerås stad
Roger Broberg is the Chief Information Security Officer for Västerås city, guided by a mission to contribute to a safer and more efficient society. His work focuses on enabling digitalization in a thoughtful and responsible way, ensuring that technological progress does not expose organizations or citizens to unnecessary risks. He brings experience and judgement to balancing innovation, public service delivery, and long-term security.
Anders Andersson — Chief Information Security Officer, Västra Götalandsregionen
Anders Andersson is the Chief Information Security Officer for Västra Götalandsregionen, one of Sweden’s largest regional authorities. He has held multiple leadership roles within the organization, including Head of Cyber Security and unit manager, giving him deep insight into both strategic and operational security challenges. His work supports large-scale public services such as healthcare and regional administration, where resilience, availability, and data protection are critical.
Robert Reineck — Chief Information Security Officer, Uppsala kommun
Robert Reineck serves as Chief Information Security Officer for Uppsala municipality, bringing long-standing experience from both municipal government and national authorities. His background includes senior security roles at the Medical Products Agency and extensive consulting experience in information security. He combines strategic security governance with hands-on knowledge of regulated environments, supporting municipalities in managing complex risk and compliance requirements.
Julia Storsten — Chief Information Security Officer, Tullverket
Julia Storsten is the Chief Information Security Officer at the Swedish Customs Service (Tullverket). Her career includes progressive roles within information security across several government agencies, including Skatteverket and Uppsala municipality. With academic grounding in information security and experience in system authorization, access control, and risk management, she plays a key role in protecting customs operations and national interests against cyber threats.
Scott Melnyk — Chief Information Security Officer, Internationella Engelska Skolan
Scott Melnyk is the Chief Information Security Officer at Internationella Engelska Skolan, responsible for information security across more than 45 schools and a broad ecosystem of academic, medical, HR, and financial systems. He brings strong experience in governance, change management, and leadership, viewing security as an enabling service rather than a barrier. His work emphasizes behavioral change, effective communication, and aligning security initiatives with organizational culture in the public education space.
Securing Sweden’s Public Sector
Security leadership in government administration requires more than technical controls. It demands trust, transparency, and resilience across services that affect millions of citizens. The CISOs highlighted here demonstrate how Sweden’s public sector is evolving its security posture to support digital government, protect sensitive data, and ensure continuity in the face of growing cyber and geopolitical risks.