The landscape of national cybersecurity in Norway continues to evolve rapidly as public institutions face increasingly sophisticated threats and digital risks. Beyond mere compliance, modern government agencies require strategic stewards who can translate complex security demands into actionable programs. These leaders not only safeguard critical digital infrastructure and citizen data but also shape cybersecurity culture and readiness across institutions, making them essential figures in Norway’s digital resilience ecosystem.
In this curated list, we highlight some of the most influential cybersecurity leaders and CISOs in Norway’s government administration and public sectors. Whether they formally hold the CISO title or lead core security strategy and operations in major public bodies, each individual here has demonstrated a strong commitment to protecting Norway’s digital public services and advancing the practice of information security across their organization and beyond.
Asbjørn Reglund Thorsen — Chief Information Security Officer, Sikt
Asbjørn is a seasoned cybersecurity leader with over 20 years of hands‑on experience in security, risk management, and complex IT environments. At Sikt, the Norwegian Agency for Shared Services in Education and Research, he oversees information security, risk governance, and incident response across a nationally critical knowledge sector infrastructure. He strives to build security culture, strengthen monitoring capabilities, and align security outcomes with practical organizational needs.
Beyond his formal role, Asbjørn is deeply engaged in the practical security community, co‑founding Awareness Security with a vision to make security testing transparent, actionable, and human‑centric. He regularly shares insights at industry events and workshops, emphasizing security culture, penetration testing, and real‑world risk management.
Christian Bull — Avdelingsdirektør Digital sikkerhet, Arbeids‑ og velferdsdirektoratet
Christian leads digital security for Arbeids‑ og velferdsdirektoratet (Norway’s Labor and Welfare Directorate), where he is responsible for protecting systems that support critical national welfare services. His role places him at the intersection of socio‑technical risk management, public service protection, and secure digital transformation for a large government body that impacts millions of citizens.
Prior to this, Christian’s security journey included governance, risk, and architecture roles in IT security, laying the foundation for his current leadership in public sector cybersecurity. His broad experience helps ensure that digital welfare systems remain resilient amid evolving threats and increasing dependency on secure, reliable digital services.
Elsa Aaquist Storeng — CISO, Den norske kirke
Elsa serves as Chief Information Security Officer for Den norske kirke (The Church of Norway), leading efforts to strengthen cybersecurity, risk awareness, and digital resilience across this large cultural and community institution. Her work emphasizes not only technological safeguards but also employee awareness and preparedness to handle cyber incidents, a key aspect of organizational security posture.
Under Elsa’s leadership, the Church has participated in initiatives such as Norway’s National Security Month, enhancing phishing awareness and promoting digital preparedness among staff. She advocates building a robust security culture and threat readiness that goes beyond technical defenses to include organizational learning and behavioral change.
Martin Albert‑Hoff — Avdelingsdirektør, Nasjonal sikkerhetsmyndighet (NSM)
As the director of the National Cyber Security Centre at NSM, Martin is at the helm of national cybersecurity coordination in Norway. He guides strategic cybersecurity operations, public cyber readiness, and incident response capabilities that span government and critical infrastructure sectors.
Martin’s leadership has been particularly visible as NSM collaborates with external partners, for example, in expanding national cyber incident handling frameworks and accrediting essential cyber defense capabilities across public and private entities. His insights help shape Norway’s national stance on security threats, risk mitigation, and resilience building.
Monica Verma — Former CISO, Norwegian Directorate of Health; CEO & Cybersecurity Thought Leader
Although Monica has since moved into global advisory and thought leadership roles, she remains highly relevant to Norway’s public sector cybersecurity narrative. She previously served as CISO for the Norwegian Directorate of Health and related agencies (such as Helfo and POBO), where she led security, risk management, and resilience for critical health and welfare systems.
Beyond her public sector impact, Monica has earned global recognition as a top cybersecurity leader, ranking among the Top #3 CISOs in EMEA and being listed as one of the Top 50 Women in Tech. Today, she blends strategic advisory, keynote speaking, and cyber leadership training, helping organizations worldwide navigate AI risk, digital trust, and security leadership in complex environments.
A New Era for Public Sector Cybersecurity in Norway
These leaders showcase the breadth and depth of cybersecurity leadership across Norway’s public sector. From government agencies to national services and digital infrastructure bodies, their work ensures that public trust in digital services remains strong, resilient, and adaptive in the face of emerging risks.
As digital threats grow in complexity and scale, Norway’s public sector continues to rely on strategic thinkers who can balance technical rigor with pragmatic governance. Whether through formal CISO roles or broader information security leadership, these professionals are paving the way for resilient, secure public digital services that support citizens and institutions alike.
Discover more CISOs to watch from different industries and countries in our curated listicles.