Veteran legal leader to advance industry leadership at the intersection of law and cybersecurity, enabling business growth and stronger outcomes for customers worldwide.

OXFORD, U.K. — Oktober 7, 2025 —

Sophos, a global leader of innovative security solutions for defeating cyberattacks, today announced that Aparna Williams has joined the company as Chief Legal Officer (CLO). Williams oversees all aspects of Sophos’ global legal, compliance, and regulatory operations, reporting directly to Joe Levy, Sophos’ CEO.

With more than 25 years of legal leadership across high-growth, global technology companies, including roles at Coalfire Systems, Shippo, Imperva, and Symantec, Williams has built and scaled legal functions that enable growth, strengthen governance, and support global expansion. Her expertise spans corporate governance, complex transactions and M&A, regulatory strategy and privacy, legal operations, and enterprise risk. Throughout her career, she has been recognized for her ability to transform legal operations into a strategic function—balancing compliance and risk management with innovation and commercial opportunity.

“Cybersecurity is a business built on trust, and Aparna’s appointment reinforces Sophos’ commitment to protecting that trust,” said Joe Levy, CEO, Sophos. “Her deep expertise in corporate governance, compliance, and transactions will help keep Sophos safe and secure while enabling our continued growth. Aparna also brings a commercial and customer-centric perspective that will benefit our partners and customers worldwide as they navigate evolving cybersecurity regulations and supply chain risks."

Strategic focus areas for Sophos Legal under Williams’ leadership

  • Governance & Ethics: Reinforcing board-level governance and enterprise risk management with cross-functional controls that support resilient growth.
  • Privacy, Data & AI: Ensuring privacy, data protection, and responsible AI practices are embedded into products and operations to meet global requirements and uphold Sophos’ ethics and compliance standards.
  • Regulation & Policy Leadership: Engaging proactively with regulators and contributing to the development of global cybersecurity and data protection policies, while helping customers and enterprise leaders navigate complex compliance and supply-chain requirements.
  • Customer & Commercial Enablement: Streamlining contracts, safeguarding IP, and working directly with customers and partners to reduce friction, build trust, and improve time-to-value while maintaining robust protections.

“There is deep purpose in cybersecurity—defending people and helping them when it matters most has been the mission throughout my career,” said Aparna Williams, Chief Legal Officer, Sophos. “Sophos is at a pivotal moment, scaling to protect organizations of every size with the right mix of AI, platform innovation, services, and partner reach. As AI accelerates, bringing both transformative opportunity and new risks, my role is to ensure we scale with confidence, strengthening governance and trust to ensure innovation fuels growth and resilience for our customers.”

A frequent speaker and mentor, Williams is a thought leader on the intersection of law and cybersecurity, including regulatory readiness, supply chain risk, and the role of legal operations in managing cyber risk. She is also an active advocate for advancing women in law through organizations such as Association of Corporate Counsel (ACC), the ACC NCR Leadership Academy, and Ms. JD.

Über Sophos

Sophos ist ein führender Anbieter im Bereich Cybersicherheit und schützt weltweit 600.000 Unternehmen und Organisationen mit einer KI-gestützten Plattform und von Experten bereitgestellten Services. Sophos unterstützt Unternehmen und Organisationen unabhängig von ihrem aktuellen Sicherheitsniveau und entwickelt sich mit ihnen weiter, um Cyberangriffe erfolgreich abzuwehren. Die Lösungen von Sophos kombinieren maschinelles Lernen, Automatisierung und Echtzeit-Bedrohungsinformationen mit der menschlichen Expertise der Sophos X-Ops. So entsteht modernster Schutz mit einer 24/7 aktiven Erkennung, Analyse und Abwehr von Bedrohungen.
Das Sophos-Portfolio beinhaltet branchenührende Managed Detection and Response Services (MDR) sowie umfassende Cybersecurity-Technologien– darunter Schutz für Endpoints, Netzwerke, E-Mails und Cloud-Umgebungen, XDR (Extended Detection and Response), ITDR (Identity Threat Detection and Response) und Next-Gen-SIEM. Ergänzt wird das Angebot durch Beratungs-Services, die Unternehmen und Organisationen helfen, Risiken proaktiv zu reduzieren und schneller zu reagieren – mit umfassender Transparenz und Skalierbarkeit, um Bedrohungen immer einen Schritt voraus zu sein.
Der Vertrieb der Sophos-Lösungen erfolgt über ein globales Partner-Netzwerk, das Managed Service Provider (MSPs), Managed Security Service Provider (MSSPs), Reseller und Distributoren, Marketplace-Integrationen und Cyber Risk Partner umfasst. So können Unternehmen und Organisationen flexibel auf vertrauensvolle Partnerschaften setzen, wenn es um die Sicherheit ihres Geschäfts geht.  Der Hauptsitz von Sophos befindet sich in Oxford, Großbritannien. Weitere Informationen finden Sie unter www.sophos.de.