California’s transportation infrastructure depends on organizations that move people, freight, and critical services at scale. That makes cybersecurity leadership especially important across rail, logistics, shipping, and transit. The leaders in this feature work in very different parts of that ecosystem, but they share a similar challenge: protecting operational continuity, sensitive data, and complex technology environments in industries where disruption can have real-world consequences far beyond IT.
Omer Rana — CISO, California High-Speed Rail Authority
Omer Rana serves as chief information security officer at the California High-Speed Rail Authority, where he leads cybersecurity and privacy programs for one of the most ambitious transportation infrastructure projects in the United States. In the role, he is responsible for compliance with state and federal regulations, the protection of critical infrastructure, and the security challenges tied to large volumes of real-time operational data. His position places him at the center of a first-of-its-kind rail effort in the U.S., where cybersecurity has to support long-term resilience as well as day-to-day governance.
Rana brings a broader executive background that spans CISO, CIO, CTO, and enterprise architecture leadership roles. Alongside his public sector work, he has led cybersecurity strategy through Rogue Logics, where his work included incident response, cloud and application security, governance, and compliance programs aligned to standards such as SOC 2, ISO 27001, and HITRUST. Earlier roles at Gilead Sciences, W3Eye, Vignette, and BEA Systems reflect a foundation in application engineering, enterprise architecture, product development, and large-scale systems design. That mix of security leadership and deep technical delivery experience gives him a strong profile for an organization building transportation infrastructure at unprecedented scale.
Andy Narendra — CISO, Temco Logistics
Andy Narendra is chief information security officer at Temco Logistics, where he leads enterprise cybersecurity, governance, risk, compliance, and operational resilience strategy for a high-growth nationwide logistics company. His current responsibilities include aligning security architecture with business expansion, embedding AI risk management and third-party governance into operations, strengthening identity and data protection capabilities, and guiding senior leadership on cybersecurity investment and risk decisions. In a logistics environment where scale and execution matter, his work is closely tied to resilience and business continuity.
Narendra’s background combines cybersecurity with broader digital transformation and operational technology leadership. Before joining Temco, he spent more than 15 years at Guardion Health Sciences in senior technology leadership roles, where he built scalable cloud-based environments, supported IPO readiness, implemented a NIST-aligned cybersecurity program, and helped shape regulatory reporting. Earlier work as a founder, operations leader, and project manager adds experience in e-commerce, business systems, and cross-functional execution. That blend of security, operations, and commercial technology experience makes him a strong fit for logistics organizations where cybersecurity has to move in step with growth.
Sean Walsh — CISO, Matson, Inc.
Sean Walsh is chief information security officer at Matson, Inc., where he has led the company’s enterprise-wide information security and risk management program since 2015. His work has focused on protecting the integrity, confidentiality, and availability of business-critical information while building security strategy around frameworks such as NIST 800-53 and ISO 27001. At Matson, his efforts have included expanding encryption across key platforms, implementing data loss prevention and identity controls, rolling out secure file transfer and multifactor authentication, establishing vulnerability management and intrusion detection capabilities, and developing company-wide awareness and compliance initiatives.
Before Matson, Walsh held leadership roles at Riverbed Technology, where he managed IT security and compliance, oversaw vulnerability scanning and data classification efforts, supported business continuity and disaster recovery, and regularly presented quality metrics to executive leadership. Earlier roles at Cisco, Two Shea Consulting, and Hertz added experience in SOX compliance, IT controls, project leadership, audit, and operational analysis. His background stands out for combining governance, audit, infrastructure, and security operations, a useful combination in a transportation company where reliability and risk management are closely connected.
Shoaib Qazi — SVP, CISO, XPO Logistics, Inc.
Shoaib Qazi is senior vice president and chief information security officer at XPO Logistics, where he leads cybersecurity strategy and operations for a Fortune 200 transportation company. His role has included building and modernizing the security program, helping guide the company through major structural changes including divestitures and spin-offs, and more recently focusing on enterprise resilience, program evolution, and secure AI adoption. His profile reflects a security leader operating at the intersection of business transformation, cloud modernization, and risk management in a large-scale logistics environment.
Qazi’s earlier experience includes serving as SVP, CTO, and CISO for RXO during its spin-off period, where he led IT stabilization, cloud migration, and the design of a cloud-first security posture. Before that, he served as CISO at Sears, helping restore PCI DSS compliance and manage security recovery after a major cyber event, and spent more than six years at Experian in senior global information security leadership. His career also includes AT&T, IBM Internet Security Systems, and the University of Alabama at Birmingham. That range gives him experience across consumer, data, telecom, and consulting environments, all of which now inform his work in logistics and transportation infrastructure.
Shaun Robles — CTO / CISO, Waterfront Logistics
Shaun Robles is chief technology officer and chief information security officer at Waterfront Logistics, where he brings more than two decades of experience in infrastructure, cybersecurity, governance, and process improvement. His current role follows a series of technology leadership positions in logistics and distribution, and his background reflects a consistent focus on using enterprise architecture, compliance, cloud strategy, and risk management to improve business performance while reducing exposure. With Waterfront Logistics, that combination of technical and operational leadership is particularly relevant in a sector where warehouse systems, integrations, connectivity, and security all need to work together.
Before joining Waterfront Logistics, Robles served as head of information technology at IDC Logistics, where he led broad organizational change, reduced technology spend, modernized EDI to API connectivity, improved warehouse operations, and strengthened analytics and cyber capabilities. Earlier, at Maersk, he led warehouse and distribution technology integration across multiple acquisitions while also forming and managing the North America cybersecurity group. His prior leadership at MedMen, The CIM Group, ReachLocal, Condusiv, Alliance College-Ready Public Schools, and St. Joseph Health shows experience across infrastructure, IAM, compliance, business continuity, and M&A. He stands out as a leader whose security work is closely tied to large-scale business transformation.
Dylan Hack — CISO, Orange County Transportation Authority
Dylan Hack is chief information security officer at the Orange County Transportation Authority, where he leads the agency’s cybersecurity department. His experience reflects a clear pattern of building and maturing security programs in complex operating environments. Before joining OCTA in 2024, he served as chief information security officer at Smile Brands, where he designed and launched the company’s cybersecurity program and built out capabilities spanning incident detection and response, 24×7 security monitoring, identity and access management, vulnerability management, cloud security posture management, data loss prevention, compliance, and awareness training.
Hack also previously served as director of information security at LA Fitness, where he oversaw cybersecurity across a large multi-location environment and created a two-year security plan shortly after arriving. Earlier in his career, he spent nearly a decade at Deloitte leading the design and implementation of cross-domain cybersecurity programs for clients, including work in DevSecOps, cloud environments, privacy controls, and executive reporting. That combination of consulting depth and in-house program leadership makes him a notable cybersecurity leader in California transportation, especially at a regional transit agency where security has to support both operational needs and public accountability.
The sector’s security challenge is getting broader
Transportation infrastructure security in California is no longer limited to protecting traditional IT systems. These leaders are working across cloud platforms, identity systems, third-party ecosystems, operational resilience programs, AI governance, and incident response frameworks that touch real-world services. What connects them is not just title or industry, but the need to secure environments where physical operations, customer trust, and digital systems are tightly linked. As transportation networks continue modernizing, leaders like these will have an even bigger role in shaping how the sector manages risk without slowing down.
Explore more profiles of the leaders shaping cybersecurity across numerous industries in our CISOs to Watch collection.