Cybersecurity Champions

From Gaming to Cybersecurity: A Consultant’s Journey to Securing Systems

In line with Echelon’s value of People with Personality, we are excited to continue our new initiative under our content umbrella designed to spotlight our incredible team members, called Cybersecurity Champions. Through these monthly features, we aim to shine a light on the amazing individuals who drive our success and embody the spirit of our company.   

“Experience generally outweighs book knowledge. In cybersecurity, it’s more important to know how to apply concepts than just understanding them theoretically. Hands-on experience is key—you need to actively do the work to learn and grow.” 

Discover the journey of Michael Pettet, Senior Cybersecurity Consultant at Echelon, from self-taught beginnings to becoming a trusted expert in penetration testing and privacy advocacy. Gain insights into the challenges, rewards, and tools of the trade in this insider look at a cybersecurity career.  

 

Q:What brought you to Echelon? What got you interested in cybersecurity?  

MP: I was drawn to Echelon's message about privacy being a human right and the importance of online security. I originally got into cybersecurity through gaming and one thing led to another—I discovered I enjoyed finding and solving problems, which naturally aligned with cybersecurity. 
 
Dan contacted me out of the blue while I was pen testing at another firm. Back then, I worked on a lot of compliance-related tasks like finding vulnerabilities and delivering reports, but clients rarely fixed the issues; they only cared about checking off compliance checkboxes. It was frustrating. 
 
However, at Echelon, our clients genuinely care about improving their security. That shift was a big draw for me. 
 

Q:What does a career in cybersecurity consulting look like? What is something you learned on the job that they didn’t prepare for you in school? 

MP: Well, I didn’t go to school for cybersecurity—I’m completely self-taught. What I’ve learned on the job is that experience matters more than theoretical knowledge. It’s one thing to read about techniques and tools; it’s another to apply them in real-world scenarios. You have to dive in and figure things out as you go. 

  

Q:What’s the best career advice you’ve ever gotten? 

MP: Experience generally outweighs book knowledge. In cybersecurity, it’s more important to know how to apply concepts than just understanding them theoretically. Hands-on experience is key—you need to actively do the work to learn and grow. 
 

Q:What keeps you motivated day-to-day? 

MP: I really enjoy hearing from clients when they tell us we’ve made a real difference for them. It's rewarding when clients actually care about improving their security rather than just checking a compliance box. 
 

Q:What do you enjoy doing in your free time? Any hobbies or interests that you’re passionate about? 

MP: I’m into movies and video games, especially 80s and 90s gangster films. I’ve probably watched Goodfellas 30 times—it’s a classic. I also love bank heist movies, like Public Enemies. 
 

Q:Do you have any resources you go to that have helped you succeed in your role? 

MP: There are plenty of training courses available. For example, Anti-Siphon Training is great and reasonably priced. Being involved in the community is important. Go to events, follow cybersecurity news, and read technical write-ups. These write-ups often detail specific techniques, which you can adapt to your work environment. It’s all about staying informed and learning from others.   
 

Q:What does being a Cybersecurity Champion mean to you? 

MP: Being a cybersecurity champion is about fostering a culture of security within an organization. It’s advocating for best practices and ensuring people make informed decisions. Unfortunately, some cybersecurity companies sell clients solutions to imaginary problems. To me, being a champion means focusing on real issues and providing practical, effective solutions that matter. 

 

Are you ready to get started?