Steven Hernandez

Chief Information Security Officer, Department of Education and

Vice-Chair, Federal CISO Council

Steven Hernandez is an information assurance expert serving the past twenty years in a variety of contexts and missions. He has worked on the front lines in operations centers and led research teams attempting to balance security, privacy, and mission delivery considerations. He has experience transforming risk management in international manufacturing, healthcare, non-profits, and governments at the federal, state, and local levels. He has led tactical, day-to-day security operations as well as guide and influence broad security initiatives such as the US government's FedRAMP program across large organizations with international presence. Presently he is the Chief Information Security Officer and Director of Information Assurance Services at the U.S. Department of Education. Presently Steven also serves as the co-chair of the US Government Federal CISO Council and government chair of the ACT-IAC Cybersecurity Community of Interest. Prior to his position at Education, he held a variety of roles at the Office of Inspector General, US Department of Education including CTO, CIO, CISO, Senior Official for Privacy and Chief Services Engineering Officer. He is an inaugural member of the United States Scholarship of Service Hall of Fame. He served on the Board of directors for the International Information Systems Security Consortium (ISC)2, served on the U.S. (ISC)2 Government Advisory Board for Cybersecurity (GAB), judge for the Government Information Security Leadership Awards (GISLA) and contributed to its Executive Writers Bureau. Mr. Hernandez is the lead author and editor of the third edition of the (ISC)² Official Guide to the CISSP CBK, the (ISC)² Official Guide to the HCISPP CBK, and several published works regarding international information assurance.