Illinois has long been one of the country’s most important life sciences hubs, with major employers spanning pharmaceuticals, medical devices, healthcare technology, and research-driven operations. The cybersecurity leaders in this feature reflect that depth. Their backgrounds span enterprise risk, regulatory assurance, connected technologies, manufacturing security, digital transformation, and the governance needed to protect highly regulated environments where operational continuity, product integrity, and trust all matter.
Nidhi Luthra — Global Chief Information Security Officer, Baxter International
Nidhi Luthra served as global chief information security officer at Baxter International, where she led cyber risk, resilience, and regulatory assurance across a Fortune 500 MedTech manufacturer spanning pharmaceuticals, medical devices, and consumer health. Her profile emphasizes an ability to translate technical risk into operational and financial impact, and to position cybersecurity as a business enabler in environments where trust can directly affect revenue, valuation, and market access. In the role, she led incident response and disclosure governance, supported secure adoption of generative AI and connected technologies, and helped the company navigate divestiture and transformation initiatives.
Before Baxter, Luthra was global cyber risk officer and senior director at Abbott, where she worked in a global life sciences manufacturing environment and focused on protecting enterprise value, securing intellectual property and manufacturing operations, and enabling Manufacturing 4.0 transformation. Earlier, she served as chief information security officer at AMITA Health and Presence Health, giving her a background that combines healthcare delivery, life sciences, crisis leadership, and complex regulated operations.
Scott Sheahen — VP, Deputy CISO, Takeda
Scott Sheahen is vice president and deputy chief information security officer at Takeda, where he helps define and execute enterprise information security strategy, risk management, and cyber resilience programs across global operations. His profile points to a leader who combines strategic vision with practical execution, particularly in the design of scalable policies, operational processes, and metrics that align security priorities with business objectives. His current work also includes support for transformation initiatives, cloud security, and secure digital innovation.
Earlier at Takeda, Sheahen led information risk and compliance and previously served as global head of information risk management. In those roles, he oversaw global capabilities tied to technology risk governance, regulatory compliance, third-party security risk, and operational resilience. He also helped establish Takeda’s governance program for generative AI and led the integration of previously separate risk and compliance capabilities into more unified operating models. That experience makes him a strong example of security leadership inside a global life sciences company where risk, compliance, and transformation all intersect.
Derek Dixon — Chief Information Security Officer, Fresenius Kabi
Derek Dixon is chief information security officer at Fresenius Kabi, where he guides the organization’s security programs, cyber threat management, and technology strategy alignment. His profile describes a leader focused on implementing robust security programs, managing cyber threats, and fostering security awareness and resilience across a global enterprise. In his earlier role as senior director of cybersecurity, he was accountable for security program oversight, architecture development, policy adoption, threat analysis, audits, and the standards and controls governing platforms, applications, networks, and cloud technologies.
Before moving into cybersecurity leadership, Dixon served as director of enterprise architecture at Fresenius Kabi, where he worked on applying global standards across infrastructure, applications, and service management. That progression gives him a blend of architecture, governance, and security leadership inside a large global healthcare and life sciences organization. His recognition with the 2025 ChicagoCISO ORBIE Award also underscores the visibility of his leadership in the market.
Lalita Constantine — Associate Director, R&D IT Risk, Security, & Compliance, AbbVie
Lalita Constantine is associate director for R&D IT risk, security, and compliance at AbbVie, where she now works at the intersection of research-focused technology, risk, and compliance. Her background in the material provided shows a steady progression through regulated IT, audit, project management, and quality-sensitive environments, which is especially relevant in life sciences companies where research systems, validation requirements, and operational controls all carry weight.
Before AbbVie, Constantine held multiple roles at Abbott across commercial technology, audit, and business systems. That included work in commercial compliance, corporate audit, digital project management, disaster recovery planning, decommissioning, validation documentation, testing, and support for global manufacturing and quality-related systems. Her experience stands out for its breadth across audit, operations, regulated processes, and cross-functional IT delivery within major life sciences organizations.
Security leadership across pharma, devices, and regulated innovation
The leaders in this feature show how cybersecurity in Illinois’ life sciences industry goes well beyond traditional IT protection. Their work touches manufacturing environments, regulated product development, research systems, enterprise risk, digital health, compliance, and connected technologies. Together, they reflect the kind of security leadership required in a sector where operational resilience, patient impact, intellectual property protection, and regulatory confidence all matter at the same time.
Explore more profiles of the leaders shaping cybersecurity across numerous industries in our CISOs to Watch collection.