The Czech Republic’s financial services sector spans banks, insurers, captive finance arms, and digitally enabled platforms that increasingly depend on cloud services, third-party vendors, and highly integrated customer channels. That combination raises the stakes for cybersecurity leadership: the job is not only defending systems, but also building governance, embedding security into product delivery, and proving resilience under regulatory and audit scrutiny. The leaders below stand out for shaping security programs in complex, regulated environments—and for bridging security with technology delivery and enterprise risk.
Jan Bílík — Head of Software Development and Analysis and Former Chief Information Security Officer, Volkswagen Financial Services CZ
Jan Bílík currently leads Software Development and Business Analysis at Volkswagen Financial Services CZ, managing a sizeable team responsible for application delivery, analysis, and application support. Before moving into this engineering and delivery leadership role, he spent several years as the organization’s Chief Information Security Officer and Governance, Risk, and Compliance Manager (and Deputy Information Technology Director), where he built the security and GRC function from the ground up. In that capacity, he owned information security strategy and execution across core domains—information security management systems, risk analysis, security architecture, security operations (including security information and event management, vulnerability management, and incident management), and secure software development lifecycle practices across projects and change requests. His tenure also included major enterprise initiatives such as long-running security and compliance transformation programs and GDPR leadership within the data security and privacy stream, giving him a rare end-to-end view of how financial services organizations operationalize governance while modernizing core systems and digital channels.
Petr Hejda — Chief Information Security Officer, Kooperativa pojišťovna, a.s.
Petr Hejda leads the security program at Kooperativa pojišťovna, a.s., bringing a strongly technical background into the Chief Information Security Officer role. Prior to stepping into the top security position, he served as Head of Cyber Security Architecture and as a Cyber Security Architect, building depth in security design and control implementation. Earlier, his work included information technology security architecture within a banking environment and several years delivering security solutions as part of a systems integrator and services context—designing and implementing security information and event management capabilities, vulnerability management, mobile device management, and privileged access management solutions. That blend of architecture leadership and hands-on deployment experience is especially relevant in insurance environments where modernization efforts must be matched with practical detection, identity controls, and operational hardening across complex enterprise estates.
Peter Marcinek — Chief Information and Information Technology Security Officer, Komerční pojišťovna
Peter Marcinek is responsible for information and information technology security at Komerční pojišťovna, Société Générale Insurance, with a career shaped by governance and assurance work across financial services. His experience includes leading security governance in an insurance context while also having a background in information technology and process audit—work that typically sharpens a leader’s ability to translate controls into measurable programs, withstand scrutiny, and drive remediation through operational teams. He has also held interim responsibility connected to risk management leadership, reinforcing the practical overlap between security governance, enterprise risk, and regulatory accountability. The result is a profile well-suited to financial services environments where audit readiness, control assurance, and clear ownership models are as important as the technical defenses themselves.
Jaroslav Novotný — Chief Information Security Officer, Allianz pojišťovna Česká republika
Jaroslav Novotný brings a compliance-heavy, framework-driven approach to security leadership, with emphasis on building security programs that hold up under regulatory pressure and independent assurance. His work spans governance, risk, and compliance, including aligning organizations to widely used information security standards and resilience expectations, and strengthening operational practices such as vulnerability management, business continuity planning, incident response, and security awareness programs. His background also includes experience in digital forensics and adversarial testing disciplines, which can be valuable in insurers and broader financial services organizations that need both control maturity and credible preparedness for real-world incidents. The overall profile reflects a security leader focused on measurable resilience—not just passing audits, but improving day-to-day security outcomes.
Strengthening Resilience Across Czech Financial Services
Cybersecurity leadership in the Czech Republic’s financial services industry is increasingly defined by dual responsibilities: enabling digital growth while enforcing governance and operational resilience. The leaders featured here reflect different but complementary strengths—building security and GRC functions from scratch, translating architecture into deployable controls, running audit-ready security governance, and driving compliance-aligned resilience programs. Together, they illustrate how modern financial services security leadership is evolving beyond perimeter defense into security as a core operating capability.
Insurance security is increasingly inseparable from the technology ecosystem behind it—software delivery, cloud operations, identity, and platform assurance. For a closer look at the CISOs driving security outcomes inside Czech tech companies and product teams, read CISOs to Watch in the Czech Republic’s Information Technology Industry.