Massachusetts remains one of the country’s most important states for cybersecurity leadership because its talent base cuts across financial services, healthcare, enterprise technology, and digital platforms. The women in this feature reflect that breadth, with roles that span global CISO leadership, product and enterprise security, healthcare technology, and executive advisory work. Some are responsible for protecting major institutions with complex regulatory and operational demands, while others help shape security strategy through transformation, governance, and community leadership. Taken together, they show how cyber leadership in Massachusetts often sits close to the center of business decision-making. It is a landscape defined not just by technical depth, but by scale, influence, and the ability to connect security with long-term organizational resilience.
Elizabeth Joyce — Executive Vice President & Chief Information Security Officer, State Street
Elizabeth Joyce is Executive Vice President & Chief Information Security Officer at State Street, where she is responsible for the organization’s overall information security program. Before joining State Street, she spent more than a decade at Hewlett Packard Enterprise in a series of senior roles including SVP & Chief Security Officer, SVP & CISO, and Deputy CISO, with responsibility for building security capabilities that protected enterprise assets and enabled the business. Earlier leadership roles at companies including Iron Mountain, Symantec, and Autonomy add further depth across both the United States and Europe. She stands out for the scale of her leadership, her long record in global security roles, and her broader influence through work with the World Economic Forum and organizations supporting youth and underrepresented groups in STEM and cybersecurity.
Ann Chang — Chief Information Security Officer, Blue Cross Blue Shield of Massachusetts
Ann Chang serves at Blue Cross Blue Shield of Massachusetts as CISO, Chief AI & Data Protection Officer, Tech Risk Control, GRC, Cloud AI Infrastructure Engineering, with responsibility spanning cybersecurity strategy, AI governance, data protection, technology control, and compliance readiness. Her background combines CISO, engineering, and product management experience, with domain expertise that includes cybersecurity, AI and machine learning, cloud, GRC, data privacy, network architecture, blockchain, and digital assets. In her current role, she focuses on strengthening people, processes, and technologies to safeguard sensitive data, support resilience, and manage third-party and technology risk in a highly regulated environment. She stands out for the breadth of her technical and strategic range, especially her ability to connect cybersecurity, AI, cloud infrastructure, and governance into one executive portfolio.
Jane Moran — Chief Information and Digital Officer, Mass General Brigham
Jane Moran is Chief Information and Digital Officer at Mass General Brigham, bringing more than two decades of experience in chief information officer roles within global organizations. Before joining Mass General Brigham, she served as Global CIO at Unilever, where she led the global IT agenda and drove technology strategy, implementation, and support across internal and external business applications, platforms, networks, and data centers. Her earlier leadership roles at Thomson Reuters, The Thomson Corporation, and other organizations reflect a long career at the intersection of enterprise technology and business transformation. She stands out in this feature because of the scale of her digital leadership and her experience leading major organizations through cloud adoption, digitization, and enterprise-wide technology modernization.
Dana Shell — Senior Vice President, Information Security, HarborOne Bank
Dana Shell is Senior Vice President, Information Security at HarborOne Bank and previously served there as Vice President, Chief Information Security Officer. Her background is rooted in financial services, enterprise risk, internal audit, and cybersecurity program leadership, with prior experience at Cognition Financial, where she held the CISO title and led information security, cybersecurity, compliance, vulnerability management, incident response, and business continuity work. Earlier roles in internal audit at Cognition Financial, Houghton Mifflin, and PricewaterhouseCoopers add strong governance and control expertise to her profile. She stands out for her risk-focused leadership style and for consistently connecting information security, audit, and business objectives in regulated financial environments.
Sue Bergamo — CISO | CIO | Board Member / Executive Advisor | Investor / Podcaster / Author, BTE Partners
Sue Bergamo serves at BTE Partners as CISO | CIO | Board Member / Executive Advisor | Investor / Podcaster / Author, where she advises organizations on technology, cybersecurity, AI, data privacy, risk management, and M&A. Her current work centers on helping companies build secure, resilient, and innovative capabilities while aligning people, process, and technology with strategic, regulatory, and operational demands. Her earlier leadership roles include Chief Information Security Officer at Precisely, VP, Global Information Security at ActiveCampaign, CIO & CISO at Episerver, and senior technology leadership positions at Microsoft, Net Atlantic, Aramark, Staples, CVS/pharmacy, Liberty Mutual, and Cigna. She stands out for the breadth of her executive experience and for her continued role as an advisor, board contributor, author, speaker, and investor working across cybersecurity, transformation, and growth.
Christina Mazzone — Global Deputy Chief Information Security Officer, Omnicom
Christina Mazzone is Global Deputy Chief Information Security Officer at Omnicom, where she brings a record of building and advancing enterprise security programs that reduce risk while supporting business growth. Before Omnicom, she served as Cybersecurity Risk Officer & Interim Product Security Officer at PTC and held information security leadership roles at Mass General Brigham, where she was responsible for security programs supporting major hospitals and more than 100 physical locations. Her earlier work at Bright Horizons added further experience in information security leadership and operational management. She stands out not only for her enterprise and healthcare security background, but also for her active role in the profession through (ISC)² Eastern Massachusetts, the Professional Association of CISOs, advisory work, and community-building efforts focused on wellbeing and resilience.
A State Where Cyber Leadership Shapes the Larger Technology Agenda
The women in this Massachusetts feature reflect a cybersecurity community with unusual depth across sectors that shape the broader economy. Their work touches financial infrastructure, healthcare delivery, enterprise software, digital transformation, governance, and product security, showing how cyber leadership in the state is closely tied to trust, continuity, and innovation. Just as important, their careers show that influence in cybersecurity can come through multiple paths, from formal CISO posts to broader executive and advisory roles. That range is part of what keeps Massachusetts at the forefront of cybersecurity leadership today.
Explore more profiles of the amazing women shaping cybersecurity across numerous industries in our Women’s Month collection.