Jason Hernandez

Security Engineer / Cybersecurity Analyst @ Oasis Systems

San Antonio, TX, United States

Details

Experience: DevSecOps supporting DAF Identity, Credential and Access Management (ICAM), including : application development/deployment, cloud based environments, and government standard compliance. Manages the RMF process for the ICAM solution; coordinates with government leadership and third party vendors. Supports security analysis and captures program documentation for government reporting.

2021 : Present

Oasis Systems LLC

Security Engineer / Cybersecurity Analyst

Security/RMF SME. Conducted timely and in-depth research for policies and processes applicable to security engineering. Applied IT security control requirements/solutions to reinforce the confidentiality, integrity and availability of AF IC enterprise data and resources. Developed solutions and recommendations (with test plans) and provided POA&M/documentation to senior DoD leadership.

2021 : 2021

3IT Consulting

Security Engineer / Data Security Analyst IV

Subject matter expert; focused on cyber security risk management and governance, including the integration of cyber disciplines, such as mission assurance. Worked alongside Systems Engineers and project stakeholders to ensure approaches, constraints, and perspectives were fully recommended and considered in risk management and policy decisions. Analyzed the development of strategy, policy, governance, and implementation guidance recommendations. Integrated Cyber security disciplines to enable a holistic risk management/security approach. Performed Risk Management Framework (RMF) Assessment and Authorization (A&A) responsibilities. Developed the documentation, validation, and accreditation processes necessary to assure systems and met security/privacy requirements. Evaluated test results, analyzed risk, and developed security assessment documentation to support accreditation decisions. Created a risk mitigation strategy and ensured security configurations were maintained in accordance with DoD mandated policies. Interpreted RMF guidance from Authorizing Officials for clients and provided information and input for the preparation of accreditation packages. Assessed the applicability of emergent vulnerabilities to individual systems and technologies.

2019 : 2021

ManTech

Information System Security Officer (ISSO) III

Developed and integrated cyber capabilities into Combatant Commander plans and initiatives. Coordinated cyberspace operations planning activities through the IJSTO to include Evaluation Requests and Response Messages. Served as an advanced technical expert of all planning methodologies and applications in all phases of military operations (JPGs, OPGs, and OPTs). Provided analytical expertise and expert knowledge of operational design, Joint Operation Planning, and APEX. Supported the development of cyberspace operations plans, contingency plans, concepts of operations, and orders.

2018 : 2019

BTAS, Inc.

Cyber Strategist

Performed mission/risk analysis impacting all matters IT/comm at Air Force bases world-wide. Advised senior base leaders of potential, and or, actual vulnerabilities affecting IT/cyber ops. Provided expert advice to mitigate risk & reinforce multi-dimensional base security posture; prepared and delivered assessment reports to senior AF staff.

2017 : 2018

Apogee Engineering, LLC

Cyber Vulnerability Analyst

Company: Oasis Systems LLC

About

21 years military experience providing communications infrastructure maintenance, general IT support, intelligence platform sustainment, and cyber operations support. Vast knowledge & industry training in operating/maintaining Windows, Apple, UNIX and CISCO environments & technology. Performed quality assurance and cybersecurity in support of DISA Pacific. Served on initial AFCYBER staff: Joint Operational Planning and USCYBERCOM LNO experience. Led composite military/civilian/contractor teams throughout career. As a DoD contractor, I served on the Air Force Mission Assurance Assessment Team; performed mission/risk analysis impacting all matters IT/comm at Air Force bases world-wide. Advised senior base leaders of potential, and or, actual vulnerabilities affecting IT/cyber ops. Provided expert advice to mitigate risk & reinforce multi-dimensional base security posture; prepared and delivered assessment reports to senior AF staff. Additionally, I supported the AFCYBER/624 OC as a cyber-strategist, providing advanced technical expertise of all planning methodologies/applications in all phases of military operations (JPGs, OPGs, OPTs, Joint Operational Planning and APEX). My next role was an ISSO III at the Cryptologic & Cyber Systems Division/USAF. Currently I am a Security Engineer/Data Security Analyst IV, supporting the AF IC enterprise.