Michael Johnson

Michael Johnson

Michael Johnson is a Consultant at Bates Group serving as a senior strategic advisor for cybersecurity, enterprise cyber-risk management, digital transformation, information technology (IT) management, and cloud safeguarding. Michael is a strategically focused, results-driven senior executive having served as a technical and business-focused Chief Information Officer (CIO) and Chief Information Security Officer (CISO) in large, complex, and dynamic information-intensive global enterprises. Michael currently serves as Senior Strategic Advisor, Cybersecurity, in support of Capital One’s (COF) Chief Enterprise Services Officer.

Previously Michael served as Capital One’s Senior Vice President and CISO, where he led and managed cyber, information security, cybersecurity operations and intelligence, cloud safeguarding engineering and cyber machine learning, insider threat technical investigations, supply chain risk management, and security technology innovation. Prior to Capital One, Michael served as the CIO for the U.S. Department of Energy (DOE), where he led and managed cybersecurity, cyber enterprise integration, enterprise information resources management, cyber supply chain risk management, and headquarters information technology operations. Michael served as DOE’s Senior Agency Official for Privacy, as a member of the White House National Security Council Cyber Response Group (CRG), the Federal CIO Council, the Federal Privacy Council, and Michael co-chaired the U.S. Committee on National Security Systems (CNSS). Prior to joining DOE, Michael served as the Assistant Director for Intelligence Programs and National Security Systems in the White House Executive Office of the President (EOP), Office of Science and Technology Policy (OSTP). Michael was responsible for the National Security, Emergency Preparedness portfolio, to include cybersecurity and Presidential communications, and served as White House representative on the Committee on Foreign Investment in the United States (CFIUS). Prior to OSTP, Michael served at the U.S. Department of Homeland Security (DHS) as the Chief Scientist, Office of Intelligence and Analysis, where he led programs to integrate and strengthen intelligence and information sharing and safeguarding across DHS, Federal, State, and local partners. Michael led the development of the DHS Information Strategy, and coordinated DHS initiatives in identity intelligence, science and technology intelligence (S&TI), intelligence support to cyber, and cybersecurity for National Security Systems. Prior to joining DHS, Michael served as the first Deputy Associate Director of National Intelligence for Information Sharing and Deputy Intelligence Community Information Sharing Executive in the Office of the Director of National Intelligence (ODNI). He also served as a principal deputy to the Intelligence Community (IC) Chief Information Officer (IC CIO), and as the Director of Intelligence Community Integration. In these roles, Michael oversaw enterprise information and systems management to include the IC enterprise architecture, information technology, information assurance, and system security. Previously, Michael served at Sandia National Laboratories as a Senior Scientist, computer engineer, and he later managed national security systems analysis. Prior to joining Sandia, Michael served as a research and development engineer at Hewlett-Packard Company.

Michael serves on the Board of Directors, and as Chairman of the Risk Committee, for Proofpoint (PFPT), a leader in cloud-based cybersecurity solutions. Michael serves on the Board of Directors for Lacuna Technologies which creates open source transportation software and provides digital mobility infrastructure services to cities around the world. Michael serves as an Advisor to Anjuna Security which focuses on secure enclaves for enterprise and cloud security.

Michael is a member of the Intelligence and National Security Foundation (INSF) Board of Trustees, and serves on the Executive Security Action Forum (ESAF) Program Committee. Michael maintains active U.S. national security clearances as a U.S. Government Expert (ED), Special Government Employee (SGE). Michael is an accomplished software engineer, with a patent in Weapons of Mass Destruction (WMD) detection, communication and decision support systems. Michael has extensive police officer training at the state level, having served as a commissioned officer in local law enforcement in California from 2005 through 2018. Michael has a B.Sc. in Computer Engineering and an M.Sc. in Computer Science from the University of California, San Diego, and he holds a CERT Certificate in Cybersecurity Oversight from Carnegie Mellon University.



Capital One Financial Corporation, McLean, VA, 2017 – 2020; Senior Strategic Advisor, Cybersecurity (contract), 2020; Senior Vice President, Cybersecurity, 2019 – 2020; and Senior Vice President & Chief Information Security Officer (CISO), 2017 – 2019

Proofpoint, Board Member, Risk Committee Chair, Sunnyvale, CA, 2017 – 2020

National Grid, Vice President Cybersecurity, London, UK & Waltham, MA, 2016 – 2017

Department of Energy, Chief Information Officer (CIO), Washington, D.C., 2015 – 2016

White House, Office of Science and Technology Policy, Assistant Director for Intelligence Programs and National Security Systems, Washington, D.C., 2013 – 2015

Department of Homeland Security, Chief Scientist, Office of Intelligence & Analysis, Washington, D.C., 2010 – 2013

Office of the Director of National Intelligence, Deputy Associate Director of National Intelligence for Information Sharing, Washington, D.C., 2006 – 2009

Sandia National Laboratories, Senior Scientist, Livermore, CA, 1993 – 2015

Hewlett-Packard Company, Research & Development Engineer, San Diego, CA & Palo Alto, CA, 1991 – 1993, 1988 – 1993


Learning as Leadership, 1-Year Leadership Program, 2019 – 2020

CERT Certificate in Cybersecurity Oversight, Carnegie Mellon University, and National Association of Corporate Directors (NACD) Cyber-Risk Oversight Program, 2020

Harvard Kennedy School, Driving Performance: Leadership Strategies that Produce Results, 2013; Senior Executives in National and International Security, 2009

Intelligence Community Senior Leadership Program (ICSLP), 2008

California Peace Officer Standards and Training (POST) Certifications, 2003

Master of Science (M.Sc.), Computer Science, University of California, San Diego, Department of Computer Science and Engineering, 1992

Bachelor of Science (B.Sc.) Computer Engineering, University of California, San Diego, 1991


Lacuna Technologies, Board Member, 2018 – 2020

Anjuna Security, Inc., Board of Advisors, May 2020 – 2020

Intelligence and National Security Foundation, Board of Trustees, 2014 – 2020

Intelligence and National Security Alliance (INSA), Board of Advisors, 2012 – 2020

Global CIO, & Information Risk Management Research Boards, Member since 2015

Executive Security Action Forum (ESAF), Program Committee Member

U.S. Patent 7,019,637: “Systems and Methods for Detecting and Processing”

Reserve Police Officer, City of Livermore, Livermore Police Department, Commissioned 2005 – 2018

Department of Energy (DOE), Office of Science, Special Government Employee (SGE), Clearances include: Active National Security (including DOE) Clearances: TS/SCI, Q


P.Quade, M.Johnson, et.al., 2019. The Digital Big Bang: The Hard Stuff, the Soft Stuff, and the Future of Cybersecurity, Wiley. Chapter 10, The Fundamental Importance of Inspection, by Michael Johnson.

Department of Energy, Deputy Secretary E. Sherwood-Randall, 2015. DOE Cyber Strategy. Washington, DC.

Executive Office of the President, President’s Council of Advisors on Science and Technology (PCAST), PCAST Co-chairs J. Holdren and E. Lander, Working Group Co-chairs S. Graham and W. Press, 2014.

Report to the President: Big Data and Privacy: A Technological Perspective. Washington, D.C.

Department of Homeland Security, Secretary J. Napolitano, 2013. DHS Information Sharing and Safeguarding Strategy. Washington, D.C.

T. Roberts, W. Studeman, B. Fast, M. Johnson, & R. Schaeffer, 2011. Cyber Intelligence: Setting the Landscape for an Emerging Discipline. Intelligence and National Security Alliance, Washington, D.C.

Office of the Director of National Intelligence, J.M. McConnell, 2008. U.S. Intelligence Community Information Sharing Strategy. Washington, D.C.

D.M. Nicol, R. Tsang, H. Ammerlahn, and M. Johnson, 2006. Detection of Nuclear Material at Border Crossings Using Motion Correlation. Submitted for consideration to the Proceedings of the 2006 Winter Simulation Conference, IEEE/ACM, Monterey, California.

D.M. Nicol, R. Tsang, H. Ammerlahn, and M. Johnson, 2006. Sensor Fusion Algorithms for the Detection of Nuclear Material at Border Crossings. Submitted for consideration to SPIE (Society of Photo-Optical Instrumentation Engineers) – The International Society for Optical Engineering.

D.M. Nicol, M.E. Goldsby, and M.M. Johnson, 2004. Simulation Analysis of Virtual Geographic Routing. In Proceedings of the 2004 Winter Simulation Conference, IEEE/ACM, Washington, D.C.

H.R. Ammerlahn, M.E. Goldsby, M.M. Johnson, and D.M. Nicol, 1999. A Geographically Distributed Enterprise Modeling System. Future Generation Computer Systems, Amsterdam, The Netherlands.

D.M. Nicol, M.E. Goldsby, and M.M. Johnson, 1999. Fluid-based Simulation of Communication Networks using SSF. In Proceedings of the 11th European Simulation Symposium and Exhibition, Simulation in Industry, Erlangen-Nuremberg, Germany.

M.M. Johnson, C.A. Nilsen, and M.E. Goldsby, 1998. The Secure Data Mirror. In Proceedings of the 39th Annual Meeting of the Institute of Nuclear Materials Management (INMM), Naples, Florida.

D.M. Nicol, A.S. Yoshimura, M.M Johnson, and M.E. Goldsby, 1998. IDES: A Java-based Distributed Simulation Engine. In Proceedings of the Sixth International Workshop on Modeling Analysis, and Simulation of Computer and Telecommunication Systems (MASCOTS), IEEE/ACM Conference. Montreal, Canada