Michael Hudson, US Army
Director, Cybersecurity Strategy | CISO, Americas
Phone:
‪(972) 292-8653‬
Email:
Elevating Security, Innovation & Resilience
Securing the Future of Global Enterprises Through Cybersecurity, IT, and Strategic Leadership
I’m Michael Hudson, a cybersecurity and technology executive with over 16 years of experience building and leading enterprise security programs that protect revenue, reputation, and operational continuity.
I operate at the intersection of risk, technology, and business strategy. I translate complex cyber and IT challenges into clear executive decisions, measurable controls, and scalable architectures that enable growth. I have led zero-trust transformations, built modern security operations from the ground up, formalized secure SDLC and supply chain governance, and aligned organizations to global regulatory frameworks including ISO, NIST, SOC, NERC CIP, and CMMC.
As a senior security leader, I partner directly with boards, CEOs, and executive teams to secure multi-year investment, embed accountability into governance structures, and position cybersecurity as a strategic business function. My approach balances risk reduction with operational velocity, building high-performance teams, defensible compliance programs, and resilient enterprise platforms.
​
Effective security leadership is built on clarity, discipline, and alignment. The organizations that endure treat security as core infrastructure, not an afterthought.
Experience
Sungrow Americas | Fortune Future 50 #12 | $10B+ Revenue
Director, Cybersecurity Strategy | CISO, Americas
IBM Security | Fortune 100 #49 | $60B+ Revenue
Cybersecurity Threat Advisory Lead | Americas (Sales Engineering)
MadCap Software | $100M+ Revenue
Security Manager (Head of Security)
LG&E-KU Energy | $12B+ Revenue | Fortune 500 #372
Security Solutions Architect & SOC Lead
Toyota Financial Services | $275B+ Revenue | Fortune Global 500 #9
Global Security Architect and Team Lead
U.S. Army (Government Entity)
IT Operations and Network Security Specialist
BCDR Consulting
IT Support and Data Center Specialist
Cynops LLC
Data Center Operations: Rack and Stack Apprenticeship
At Sungrow Americas, I lead cybersecurity and product security strategy across North America, partnering globally to ensure scalability, resilience, and regulatory alignment across distributed operations. In prior capacity, I also led enterprise IT strategy and platform modernization, driving tighter alignment between infrastructure, security, and business operations.
​
My focus is on building defensible architectures, modernizing security operations, formalizing secure SDLC and supply chain governance, and embedding Zero Trust principles across enterprise environments.
​
I work directly with executive leadership to translate cyber risk into business impact, secure strategic investment, and strengthen governance. The objective is simple: ensure security enables growth, protects critical assets, and supports long-term operational resilience.
At IBM, I partnered with Fortune 500 organizations to design and mature enterprise cybersecurity programs, including SOC modernization, Zero Trust architecture, and large-scale security transformation initiatives. I worked closely with CISOs, CIOs, and executive leadership to align security strategy with business risk, regulatory requirements, and digital transformation objectives.
​
I advised clients on security operations optimization, threat detection and response capabilities, and governance alignment across frameworks such as ISO, NIST, and SOC 2. My role focused on translating complex technical capabilities into business-aligned security strategies that improved resilience, operational efficiency, and executive visibility into cyber risk.
As the senior-most security leader reporting directly to the CEO, I led enterprise-wide IT and cybersecurity strategy, overseeing regulatory compliance, IT risk management, and vendor security governance. I modernized security operations, strengthened infrastructure resilience, and embedded security controls into core business processes, achieving 95% alignment with ISO 27001, SOC 2, and GDPR requirements.
​
Beyond compliance, I rationalized IT and security spend, reduced enterprise risk exposure, and formalized DevSecOps practices — repositioning security from a reactive control function to a strategic business enabler.
At LG&E-KU, I led SOC modernization initiatives, SIEM optimization, and incident response automation within a critical infrastructure environment. My focus was risk-based security operations, strengthening detection, response, and resilience across enterprise and operational systems.
​
I developed advanced incident response playbooks, enhanced threat intelligence integration, and improved real-time risk visibility, reducing response times and improving continuity across a highly regulated energy landscape.
At Toyota Financial Services, I designed and standardized global security architectures supporting 40+ affiliates across 50+ countries, aligning regional operations under a unified security framework. My work focused on harmonizing security controls, regulatory alignment, and enterprise IT strategy across diverse international environments.
​
I led MSSP selection and 24/7 SOC onboarding initiatives, enabling centralized monitoring, improved threat response, and reduced enterprise risk exposure. Through tool rationalization and framework standardization under the OneToyota model, I contributed to a 15% reduction in cybersecurity costs while increasing global security maturity and operational consistency.
While serving in the U.S. Army, I supported the security and operation of classified and unclassified networks for rapid deployment units, maintaining mission-critical communications and encrypted data transmissions in high-tempo environments. I was responsible for operational continuity, access control, and network integrity, ensuring sustained availability under austere and high-risk conditions.
​
This experience built a foundation in disciplined risk management, operational resilience, and secure systems execution -- principles that continue to shape my approach to enterprise cybersecurity leadership.
In this role, I supported enterprise data center operations, maintaining high availability across critical infrastructure environments. I led rack-and-stack deployments, hardware installations, and infrastructure optimization initiatives to improve system reliability and operational efficiency.
​
I also contributed to disaster recovery and backup strategy implementation, strengthening business continuity and reducing downtime risk across core systems.
I began my career in IT through a hands-on apprenticeship in data center operations, developing a strong technical foundation in server deployment, hardware troubleshooting, network infrastructure, and asset management. This early experience provided direct exposure to enterprise infrastructure reliability and operational discipline.
​
That foundation continues to inform my leadership approach -- grounding cybersecurity strategy in practical systems knowledge, infrastructure resilience, and enterprise risk management.
Education
Masters of Science in Cybersecurity (IP2)
American Public University Systems
Bachelor of Science in Cybersecurity (IP1)
American Public University Systems
During my Master's program, I will focused on developing my technical and managerial skills in cybersecurity. I took courses in network security, cloud security, cryptography, and risk management. I also had the opportunity to work on various projects that involved conducting vulnerability assessments, developing incident response plans, and implementing security controls.
My undergraduate degree in Computer Science has provided me with a strong foundation in programming and computer systems. I have used this knowledge to develop various tools and scripts that have helped me automate tasks and improve the efficiency of my work.
Professional Skillset
Enterprise Security & IT Strategy
🔹 Global Security Architecture & Zero Trust – Designed and implemented enterprise-wide security frameworks across cloud, hybrid, and on-prem environments, embedding Zero Trust principles for scalable and resilient security postures.
🔹 IT Strategy & Digital Transformation – Led large-scale IT modernization initiatives, including cloud migrations, ERP/CRM integration, and infrastructure upgrades, ensuring seamless alignment between security, IT, and business objectives.
🔹 C-Suite & Board-Level Security Leadership – Translated complex cybersecurity and IT risk into business-driven insights, securing multi-year executive investment roadmaps for enterprise security and digital transformation.
​
Cybersecurity Innovation & Risk Management
🔹 Threat Intelligence & AI-Powered Security – Leveraged AI-driven threat detection, XDR, and SOAR automation to proactively identify and mitigate risks before they materialize.
🔹 Cyber Risk Quantification & Governance – Developed risk management frameworks, ensuring adherence to ISO 27001, NIST 800-53, SOC 2, GDPR, CMMC, and global cybersecurity compliance standards.
🔹 Incident Response & SOC Leadership – Established 24/7 Security Operations Centers (SOC), adversary simulation, and automated response frameworks, reducing enterprise-wide cyber risks and improving MTTR by 40%.
​
Product Security & Secure Development
🔹 DevSecOps & Secure SDLC – Integrated secure coding practices, SBOM management, and CI/CD security pipelines, reducing vulnerabilities in cloud, firmware, and enterprise software applications.
🔹 Red Teaming & Security Validation – Led penetration testing, red teaming, and offensive security validation, applying MITRE ATT&CK and
OWASP SAMM to enhance cyber resilience.
🔹 Emerging Tech & AI Security – Evaluated and deployed next-generation cybersecurity solutions, ensuring future-proofed AI-driven security strategies and cloud-native defenses.
​
Leadership, Vendor Management & Industry Influence
🔹 Vendor Risk & Strategic Cost Optimization – Managed multi-million-dollar technology portfolios, optimizing MSSP, SIEM, EDR, and security tooling investments, reducing cybersecurity costs by 15%.
🔹 High-Performance Teams & Mentorship – Built and scaled cybersecurity, IT, and product security teams, fostering leadership pipelines and training programs that increased retention and expertise.
🔹 Thought Leadership & Industry Engagement – Shaping cybersecurity best practices through Panels, Industry Standards, and strategic advisory roles, driving thought leadership in AI security, Critical Infrastructure Security, Cloud Transformation, and Cyber Risk Quantification.
Thank you for visiting!
