Mike Echols

Mike Echols

  • CEO
  • Max Cybersecurity

Michael A. Echols (Mike), is CEO of Max Cybersecurity LLC. He previously spent 10 years in critical infrastructure protection and cybersecurity leadership at the Department of Homeland Security (DHS) until 2017. His work included several White House national security and stakeholder engagement risk initiatives, and chairing interagency committees. Mike was Chairman of the Communications Sector where he led national risk assessment efforts across wireline, wireless, cable, broadcast and satellite and Designated Federal Official for the President’s NSTAC – 30 CEO level members from Defense, IT and Comm Sector companies making recommendations to the President.

Mike is now an international speaker on national resilience and has authored four Forbes online articles on the security of Smart technology. He recently led a team in the development of the Operational Technology- Cybersecurity Maturity Framework for Transit. Mike has been featured on a PBS cybersecurity special called “Roadtrip Nation.” Mike authored a 2020 book, “Secure Cyber Life, The Government Is Not Coming to Save You.”  Max Cybersecurity’s clients include Walmart, the US Army Corps of Engineers, DHS, Federal Deposit Insurance Corporation, Federal Transit Administration, and the National Science Foundation.

Sessions

  • IT OT Threats

    IT-OT convergence in critical infrastructure has increased the risk of cyberattacks. Malicious actors can exploit vulnerabilities in IT systems to compromise operational technology (OT), leading to disruptions, damage, and even safety hazards. To mitigate these threats, organizations must implement robust cybersecurity measures, including network segmentation, access controls, and incident response plans. Fostering collaboration between IT and OT teams is essential for effective risk management.

  • Cybersecurity and AI – Best Practice and Minimum Standards

    The threat of cyber-attacks by state actors and hacktivists, such as criminals and malicious rogue players, grows ever higher to cause disruption to our infrastructures, how do we assess and prioritise these risks and threats to better build cyber resilience? What role can AI play, and as a potential threat in itself, how do we regulate AI to build trust in its development and use? How can we report incidents for the benefit of everyone to better understand these threats?