Kentucky’s cybersecurity leadership bench reflects a mix of enterprise software, healthcare, manufacturing, managed security services, utilities, banking, and higher education. The women in this feature show how cyber leadership in the state is built through both formal CISO roles and adjacent leadership positions that shape governance, privacy, compliance, security operations, and enterprise resilience. Some are leading large security organizations inside global companies, while others are helping healthcare providers, regional enterprises, and public-facing institutions strengthen security maturity in practical ways. Together, they reflect a state where cybersecurity leadership is increasingly tied to business enablement, regulatory discipline, and long-term operational trust. It is a bench with both executive depth and strong sector range.
Jennifer Hartman — Informatica CISO and Head of Privacy Protection Informatica, Salesforce
Jennifer Hartman is Informatica CISO and Head of Privacy Protection Informatica at Salesforce, following her leadership at Informatica as Vice President, Chief Information Security Officer and Head of Privacy Protection. In those roles, she has led a global security organization responsible for enterprise-wide protection, risk mitigation, privacy, and regulatory compliance, while also serving as a trusted advisor to internal stakeholders, customers, executive leadership, and the board. Her earlier experience includes senior security strategy and operations leadership at Informatica, Veritas, Symantec, Cloudswell, and Abbott Diabetes Care. She stands out for her breadth across security operations, engineering, privacy, compliance, and risk management, as well as her ability to align security vision with enterprise priorities and emerging areas such as AI usage.
Jackie Mattingly — Senior Director of Consulting, Small and Medium Hospitals/vCISO
Jackie Mattingly is Senior Director of Consulting, Small & Medium Hospitals/vCISO at Clearwater, where she provides strategic guidance to healthcare organizations on business risk, security posture, and regulatory compliance. Her background includes serving as Chief Information Security Officer at Owensboro Health, along with earlier privacy and security leadership roles at the same organization and a later Director of Information Security role at Optum. In addition to her consulting work, she serves as a faculty lecturer at AEHIS, an adjunct faculty instructor at the University of Southern Indiana, and treasurer of Women in CyberSecurity Healthcare. She stands out for her deep specialization in healthcare cybersecurity and for a profile that combines executive security leadership, advisory work, education, and sector-wide engagement.
Amy Weber — Principal, Cybersecurity Governance, Risk, and Compliance, Lexmark
Amy Weber is Principal, Cybersecurity Governance, Risk, and Compliance at Lexmark, where her work spans cybersecurity compliance and certifications, IT risk management, vendor risk management, policy management, security awareness, access reviews, and customer-facing security support. Her tenure at Lexmark includes earlier roles in SAP finance business analysis and senior IT audit, giving her a strong grounding in both technology and assurance. Before Lexmark, she held audit and controls positions at Interline Brands, The Hillman Group, and PwC. She stands out for her sustained focus on GRC and audit disciplines, along with the ability to connect compliance, customer trust, and internal control maturity in a practical enterprise setting.
Stacy Mill — SVP Managed Network & Security Services, Pomeroy
Stacy Mill is Senior Vice President of Managed Network and Security Services at Pomeroy, where she leads global strategy, service innovation, delivery, and financial performance for next-generation NOC and SOC services. Her background includes senior technology and security leadership roles as VP of IT and CISO at Nashville Electric Service, CTO for the State of Kansas, and CISO and VP of Global Compliance and Enterprise Risk at Spirit AeroSystems. Earlier in her career, she led information risk and cybersecurity at KAR Global, global IT security at Yum! Brands, and served as Chief Security Officer at Humana Military Healthcare Services. She stands out for her scale of experience across multiple industries, her blend of cybersecurity, enterprise risk, compliance, and technology leadership, and her long record of building international teams and security programs.
Brenda B. Gombosky — Experienced Information Security Officer, Director, and Manager
Brenda B. Gombosky brings more than 30 years of experience across IT security, infrastructure, development, project management, and executive leadership. Her recent roles include Information Security Officer at Commonwealth Bank & Trust Company and Security and Compliance Analyst at Jack Henry & Associates, where she was responsible for security, compliance, audits, policy documentation, and product-related guidance in regulated banking environments. Much of her career was spent at the University of Louisville, where she held senior roles including Executive Director of Information Technology Infrastructure and Director of Information Technology, Enterprise Security, with responsibility for enterprise network security, secure access management, standards, policies, procedures, and risk assessment across a large university environment. She stands out for the longevity and breadth of her experience, along with a career built on enterprise security leadership in both higher education and financial services.
A Kentucky Cybersecurity Bench Built Across Sectors
The women in this Kentucky feature reflect a cybersecurity leadership base that spans cloud software, healthcare, manufacturing, managed services, banking, and higher education. Their roles differ in scope, but each sits close to the decisions that shape resilience, privacy, compliance, and trust. That matters because modern cyber leadership is no longer confined to a single technical lane. It increasingly requires leaders who can connect security with operations, governance, customer confidence, and long-term business performance. Kentucky’s bench shows that kind of leadership is already well established across the state.
Explore more profiles of the amazing women shaping cybersecurity across numerous industries in our Women’s Month collection.