Cybersecurity Champions

Protecting What Matters: Hernán’s Story of Purpose, Security and Service.

In line with Echelon’s value of People with Personality, we are excited to continue our new initiative under our content umbrella designed to spotlight our incredible team members, called Cybersecurity Champions. Through these monthly features, we aim to shine a light on the amazing individuals who drive our success and embody the spirit of our company. 

“Having a purpose is essential, both in personal life and at work. My purpose is not only to provide a secure and fulfilling life for my family but also to help those around me—whether I've known them forever or just have met them”.

Hernán Lazarde, Senior Consultant for our Defensive Security services, has proven to be a true advocate for proactive security and community support. With a keen eye for identifying security gaps and helping clients strengthen their defenses, he approaches every challenge with courage and clarity, believing that preparation and swift action are key to staying ahead of threats.  His passion for service goes back to his high school years in Venezuela, where he first learned that helping others also helps oneself grow. 

Today, whether he’s defending critical systems or giving back to his community, Hernán embodies what it means to confront obstacles head on while leading with purpose and passion.  We invite you to explore his journey and see how his dedication extends beyond technology.  


 

Q: What brought you to Echelon? 

HL: I was recruited by a former colleague who contacted me via LinkedIn. I looked at his profile and was overly impressed by his background in cybersecurity while being an active-duty serviceman. After just a few minutes of our first contact on LinkedIn, we spent nearly an hour on the phone, going over what Echelon did and why would be such a great fit for it. I was sold on it and decided to formally pursue the opportunity. The process moved fast, and I even got to meet and chat with Dan Desko, the firm’s CEO, who happened to be in Houston attending a conference and the rest is history. 
 

Q: What got you interested in cybersecurity?

HL:  I spent twelve years working in IT infrastructure and cloud before transitioning to cybersecurity about seven and a half years ago. I didn’t realize I was already involved in security until a CSO from a partner firm encouraged me to pursue it fully. We spent a week discussing the field, and he pointed out that I already had enough experience under my belt to be considered a senior-level professional in many of the domains of the cybersecurity realm. 

I really enjoy defensive security; it aligns well with my background as a Criminal Justice Lawyer, which my earlier career before moving to the US in the early 2000’s. Both fields focus on protecting people and businesses, ensuring compliance with regulations, and preventing malicious actors from causing harm. This connection made the transition seamless for me, and I genuinely love what I do. 

 

Q: As a Senior Defensive Security Consultant, how would you describe your day-to-day role?

HL: My role involves checking in with clients to assess their security posture and find gaps that could make them vulnerable to attacks. I work to enhance their existing protections to ensure they are as protected and resilient as possible.  

In one of my earlier roles before joining Echelon, I was part of an organization that had been the victim of a serious cyber-attack just a few days before my start date. This attack forced them to do a complete shutdown for several days, which resulted in a monetary loss of over $30M severely affecting their operations and jeopardizing the jobs of many of its workers. 

This crisis provided me with a unique perspective on the importance of being proactive and try to do my best to be prepared and try to stay ahead, instead of getting caught off-guard and being unprepared, an approach that I follow to this day when working with our clients, since my ultimate goal is to minimize the impact of potential attacks, as they can jeopardize livelihoods and disrupt entire businesses. 

 

Q: What is something you learned on the job they didn’t teach you in school?

HL: I've learned the critical importance of the human factor in cybersecurity. Many attacks occur because users neglect proper security practices, like hardening their infrastructure and networks, so, as I mentioned before, the more prepared and ahead of the game you are, the better the chances of stopping or at least significantly reduce the impacts of a cyber-attack. 

A practical lesson I emphasize to my family and colleagues is the importance of awareness. People should be cautious about what they say and who is around them, as vulnerabilities can make them easy targets. 

My daily mantra is to "never trust, always verify", which is why I always recommend that my family, friends and co-workers always double-check before sharing any sensitive information. This mindset is crucial, both on an individual level and within organizations, to foster a culture of security awareness. 

 

Q: After 20 years in the industry, what are some of the biggest lessons you've learned in your cybersecurity career? Has your perspective evolved over time?

HL: Throughout my career, I’ve learned that understanding the human condition is crucial in cybersecurity. Many individuals are eager to exploit opportunities for an easy payday, no matter the way they do it or the harm they may cause. This is clear in cases where vulnerable populations, such as the elderly, are targeted for fraud using scare tactics and playing to their emotions. 

In organizations, the same principle applies, protecting infrastructure is essential, but safeguarding people is paramount. People are what drives an organization, and if they are not aware or lack understanding on potential threats, they can expose the entire organization to significant risks. Raising awareness and ensuring that everyone understands the dangers is vital for effective security. 

 

Q: What’s the best career advice you’ve ever got?

HL: The best career advice I’ve received is to never stop learning. In fast-paced fields like IT and cybersecurity, the landscape is constantly changing with new threats and tactics. 

It’s crucial to be proactive rather than reactive. Many organizations only respond after a threat has occurred, but the goal should be to stay one step ahead. This involves following best practices, hardening systems, and training staff to recognize potential threats and suspicious activities. 

Understanding that bad actors often seek financial gain or aim to harm organizations is essential. By fostering a proactive mindset, you can better protect your organization and reduce the risk of attacks. 

 

Q: Do you have any resources you go to that have helped you succeed in your role?

HL:  I've been fortunate to have excellent leaders throughout my career in IT and cybersecurity. Their guidance has been invaluable. Maintaining an open ear and an inquisitive mind is essential; never assume you know everything. There’s always someone who can offer a distinct perspective or method, and combining approaches can lead to more effective solutions. 

Building strong relationships with leadership has also opened doors for me. Many of the roles I’ve secured came through referrals from directors, VPs, and CISOs who appreciated my work. They’ve spoken highly of me to others, which has led to excellent job opportunities. 

Finally, staying current is crucial. Knowledge is constantly evolving, and even if something doesn’t seem relevant now, it could affect your organization in the future. Keeping a curious mindset and continuously refreshing your knowledge is key to achieving success in this field. 

 

Q: Outside of work, you’re very involved in volunteer programs. Could you share more about your passion for philanthropy and what has it meant to you?

HL: For me, helping others is a way to better myself. When you empathize with someone else's struggles, you realize that even a small effort can significantly change their lives. In Houston, I've volunteered at the food bank, seeing how a simple box of food can prevent someone from facing dire circumstances. It’s essential to remember that anyone’s situation can change in an instant, regardless of their wealth. I believe in giving help whenever possible, as life can flip unexpectedly. 

Another important principle for me is not to judge a book by its cover. Everyone has their own challenges and surprises. I’ve learned that even small acts of kindness can leave an impression. 

My first experience volunteering in Venezuela involved helping elderly residents with grocery shopping as part of a school program. Initially, it felt tedious, but seeing the positive impact of my efforts changed my perspective. Now, I commit to helping whenever I can, hoping that these actions are recognized in a larger sense. 

 

Q:  Is there one organization that you work with that you’re most passionate about?

HL: I’m passionate about volunteering at the local food banks in Houston, Texas, where I typically help once a month for 4-6 hours during the weekend. I’ve been lucky to meet some really cool people while doing this and even more fortunate to have established some great friendships, thanks to sharing the commitment and passion for service and for helping others, making this experience very much worthwhile. 

I believe in helping wherever I can. Even the smallest efforts can have a significant impact on someone's life, and that’s what matters most to me. 

 

Q: Lastly, what does the title of Cybersecurity Champion mean to you?

HL: Having a purpose is essential, both in my personal life and at work. My purpose is not only to provide a secure and fulfilling life for my family but also to help those around me—whether I've known them forever, just met them or they are total strangers. As a Cybersecurity Champion my goal is to protect others and help safeguard their well-being. That’s what drives me every single day.

 

Are you ready to get started?