2025 OASIS Board Candidate
Jay White
Jay White, Security Principal Program Manager, Microsoft
Biography:
Jautau “Jay” White, PhD, MBA, MS, CISM, CISSP-ISSAP, OSCP, CDPSE, Azure AI Fundamentals
Security Principal Program Manager, OSS Ecosystem Team, Azure Office of the CTO, Microsoft
Jay has over 20 years of IT/information security experience specializing in supply chain and cyber risk, security, privacy, compliance, AI safety and security, and open source security strategy. He provides a combined tactical and strategic balance towards the implementation of enterprise and cyber risk management, security and compliance requirements that aligns to an organization’s broader business strategy. Jay believes that companies should go beyond the status quo for their customers and partners and take the teamwork/community approach to understanding business unit needs. Jay is a friend, trusted advisor, and a proud US Army retiree.
Additional Information:
OASIS has had a few ups and downs over the past 2 years that have both challenged us but also provided us great opportunities for improvement and evolution as we navigate the change in how the industry develops, publishes, and adopts standards. This is especially the case with AI standards and more specifically standards to support secure development and deployment of AI systems. I have been very fortunate to help shape this evolution as a member of your Board and continue to thank you for the opportunity.
A few highlights of my work over the last 2 years:
• As a member of the Business Development Committee, I helped propose, initiate, and establish the Coalition for Secure AI, OpenEoX TC, DPS TC, and OSIM TC
• I facilitated Microsoft’s continued support and involvement in SARIF TC, CSAF TC, and SATIS TC
• I kept my promise to build partnerships and facilitate collaboration opportunities across open source organizations and communities especially between OpenSSF and OASIS, i.e. CoSAI WS1 and OpenSSF AI/ML Security Working Group
• I served the board in the following areas –
– Vice Chair of the Board of Directors,
– Chair of the Business Development Committee,
– Technology Committee
More information about me:
My background in cybersecurity initially comes from my previous service as an Information Assurance and Security Officer and then as a Communication Security Manager in the US Army where I facilitated secure, encrypted communication and sensitive information transactions within and outside the continental US and under high stress during the Global War of Terror. I have also helped many private organizations develop and improve information security strategies based upon outcomes of both technical and non-technical cyber risk assessments. I have developed security policies, standards and procedures to enable safe and secure business transactions and enforce defined strategies.
I have previously served as Director, Technology Risk Advisory in VMWare, Senior Manager in DLA Piper, LLP’s Data Protection, Privacy, and Security Consulting Practice and as a Manager for PwC consulting to Fortune 50 clients on cyber risk management and cybersecurity. Prior to PwC, he served in the US Army as a Senior Non-Commissioned Officer in various combat and combat support positions including 2 years as an Information Assurance and Security Officer and 4 years as a Communication Security Manager.
In my spare time, I enjoy mentoring young men and women, being an active member in both of my fraternal organizations, watching baseball, bodybuilding and training athletes, and going to the movies.
My academic background includes Bachelor of Science degrees, dual majoring in Software Engineering and Information Systems Security, a Master of Science in Information Assurance and Security, MBA in IT Management, and PhD in Information Assurance and Security. He holds Certified Information Security Manager (CISM), Certified Information Systems Security Professional – Information System Security Architecture Professional (CISSP-ISSAP), Offensive Security Certified Professional (OSCP); Certified Data Privacy Solutions Engineer (CDPSE); and Azure AI Fundamentals Certified is an active member of ISC2, ISACA, and ISSA organizations.
As an OASIS Board Member, I will continue true open community partnership and collaboration. I will leverage my open source networks in organizations such as the OpenSSF, my resources and experience in governance and understand the nuances of leading working groups and special Interest groups to further strengthen OASIS, its staff, and its many technical communities. In this same vein, I will continue my efforts across many communities, evangelizing Belonging, Empowerment, Allyship, and Representation initiatives through advancing programs towards underrepresented community outreach and the encouragement of increased diverse thought leadership and inclusivity.
As always, I hope you do reach out for a 1-on-1 so we can get to know one another.