Gerardo Hernandez

Gerardo Hernandez

Cyber Security Analyst Lead  ·  D.Eng. Candidate  ·  Adjunct Professor

Laredo, Texas 956.206.2536 gerasanmi95@gmail.com LinkedIn Profile

Professional Summary

Cybersecurity professional with 7+ years of enterprise experience spanning governance, risk, and compliance (GRC), cloud and infrastructure engineering, security awareness, and AI governance. Leads enterprise GRC programs at Fortune 500 scale, administers cloud environments across AWS, Azure, and GCP, and manages hybrid infrastructure including VMware, Windows Server, Active Directory, Docker, and Kubernetes. Designed and operates a global phishing simulation and security awareness program across 38,000+ employees, achieving a 40% reduction in click rates over four quarters. Builds Python and PowerShell automation that streamlines compliance workflows and analytics reporting. Currently completing a Doctor of Engineering in Cybersecurity at George Washington University with doctoral research on AI-driven prompt injection classification. Adjunct Professor at the University of the Incarnate Word. Bilingual in English and Spanish.

Professional Experience

Cyber Security Analyst Lead

Mars — Naperville, IL Jan 2025 – Present
  • Lead enterprise GRC programs
  • Design, operate, and continuously innovate a global security awareness program for 38,000+ employees, including phishing simulations, gamified training tools, BEC awareness campaigns, and behavioral analytics, achieving a 40% reduction in regional click rates over four quarters
  • Develop and deliver targeted security awareness content including interactive training modules, monthly newsletters, and an enterprise Viva Engage security community to drive sustained behavioral change
  • Build GRC and operations automation using Python and PowerShell, reducing manual compliance effort by approximately 30% per cycle
  • Lead implementation of RSA Archer as the platform of record for the enterprise AI Risk Management program, operationalizing NIST AI RMF principles

Adjunct Professor, Cybersecurity

University of the Incarnate Word (UIW) — Remote Jan 2025 – Present
  • Instruct Cyber Systems and Components, covering foundational and applied cybersecurity concepts across enterprise technology environments
  • Instruct Malware Analysis covering static and dynamic analysis techniques, threat actor TTPs, and MITRE ATT&CK framework application
  • Develop course materials and assessments aligned to NIST CSF and industry certification objectives

IT Associate Cloud Engineer

Mars — Naperville, IL Jan 2021 – Jan 2025
  • Administered VMware vSphere/vCenter environments for VM provisioning, configuration, performance optimization, and security hardening
  • Administered cloud security operations across AWS, Azure, and GCP, applying IAM controls, access governance, and compliance engineering throughout the infrastructure lifecycle
  • Administered Active Directory, OAuth, SAML, and LDAP-based IAM across hybrid enterprise environments, managing authentication and full access lifecycle
  • Administered CyberArk PAM platform including privileged account onboarding, credential vaulting, and session monitoring
  • Deployed and managed Docker containers and Kubernetes clusters, enforcing container security policies and image governance standards
  • Built production-grade PowerShell and Python automation for infrastructure operations and security using CI/CD pipeline practices
  • Operated Splunk SIEM for log collection, detection engineering, and anomaly triage across enterprise infrastructure and cloud environments
  • Supported vulnerability management and compliance reporting using Qualys, developing dashboards to track control effectiveness

IT Intern / Security TSS

Kellogg Company — Oak Brook, IL May 2019 – Jan 2021
  • Developed PowerShell and Python automation to remediate security vulnerabilities, enforce policy controls, and streamline endpoint and application security operations
  • Collaborated cross-functionally on cybersecurity engineering initiatives covering endpoint security, mobile application security, and data integrity controls

Technical Expertise

NIST CSF×
ISO 27001×
SOX / GDPR×
GRC Platforms×
RSA Archer×
TPRM×
NIST AI RMF×
Cloud Security×
AWS×
Azure×
GCP×
CyberArk PAM×
Active Directory×
VMware×
Docker / Kubernetes×
Splunk SIEM×
Microsoft Sentinel×
Qualys VM×
Python×
PowerShell×
Bash / SQL×
Power BI / Tableau×
MITRE ATT&CK×
Phishing Simulation×
Proofpoint×
Prompt Injection / LLM Security×
Vertex AI / ADK×
Incident Response×
Zero Trust×
Terraform×

Key Projects

GRC Mini Compliance Program

NIST CSF v1.1  ·  ISO/IEC 27001:2022  ·  GRC  ·  AWS

Simulated a real-world compliance program for a fictional cloud-based SaaS company (NimbusCore Inc.) serving 300+ SMB clients on AWS. Built a complete GRC deliverable set including a 23-control mapping across all 5 NIST CSF functions cross-referenced with ISO 27001 Annex A, a detailed gap analysis with a prioritized remediation roadmap, two formal security policy documents, and a 15-item simulated evidence collection log, demonstrating audit readiness skills equivalent to a SOC 2 Type II preparation engagement.

View on GitHub

Phishing Dashboard — Campaign Progress Tracker

HTML5  ·  Vanilla JS  ·  Chart.js  ·  PapaParse  ·  CSS3

Browser-based, zero-backend phishing simulation analytics dashboard built for security awareness teams. Processes CSV exports from any phishing platform entirely client-side, tracking trends across campaigns with 7 Chart.js visualizations. Features KPI cards with delta badges, department-level intelligence, repeat offender tracking, and a drag-and-drop CSV upload modal. Single HTML file deployable to any static host with no server or build step required.

View on GitHub

Security Wordle — Daily Awareness Challenge

HTML5  ·  Vanilla JS  ·  Netlify Functions  ·  CSS3

A Wordle-style daily security awareness game where employees guess a cybersecurity term in 6 attempts. Built as a gamified training tool to reinforce security vocabulary in a low-friction, engaging format. Features color-coded tile feedback, an on-screen keyboard, share-result functionality, and a password-protected admin panel for deploying new daily words via Netlify serverless functions.

View on GitHub

Academic Background

Doctor of Engineering (D.Eng.) — Cyber Security

The George Washington University — Washington, DC Expected Aug 2026

Focus: Cybersecurity Analytics, Artificial Intelligence, and Risk Management.

M.S. Cyber Security 4.0 GPA

The University of Texas at San Antonio May 2021

Graduated with Honors. C-SPECC Cloud Computing and Security Scholar — full scholarship recipient.

Graduated with Honors

B.B.A. Cyber Security 3.85 GPA

The University of Texas at San Antonio December 2019

C-SPECC Cloud Computing and Security Scholar.

Magna Cum Laude

B.B.A. International Economics 3.55 GPA

Texas A&M International University — Laredo, TX May 2018

Member of Phi Kappa Phi Honor Society.

Cum Laude

Reading List

The Cuckoo's Egg

The Cuckoo's Egg

Cliff Stoll

Sandworm

Sandworm

Andy Greenberg

The Art of Intrusion

The Art of Intrusion

Kevin Mitnick

Click Here to Kill Everybody

Click Here to Kill Everybody

Bruce Schneier

Active Certifications

AWS Cloud Practitioner

Amazon Web Services

Active

Certified SAFe® 4 Practitioner

Scaled Agile, Inc.

Active

Certified SAFe® Scrum Master

Scaled Agile, Inc.

Active

In Progress

CompTIA Network+

CompTIA

Course Complete

CompTIA Security+

CompTIA

In Progress

AWS Solutions Architect

Amazon Web Services

Course Complete

CISSP

ISC2

In Preparation

CISM

ISACA

Planned

CISA

ISACA

Planned

CRISC

ISACA

Planned