Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock (
) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Julie Anne Chua (Fed)
Applied Cybersecurity Division Director
Julie Chua is the Chief of the Applied Cybersecurity Division in the National Institute of Standards and Technology’s Information Technology Laboratory (ITL). ACD cultivates trust in information, systems, and technologies through effective application of cybersecurity and privacy standards, guidelines, and practices. Considered a pioneer and leader in cybersecurity, Julie plays a crucial role in advancing cybersecurity through open, transparent, and collaborative partnerships across both public and private sectors, including critical infrastructure sectors. As ACD Chief, she oversees high-priority, high-visibility cybersecurity and privacy initiatives including Identity and Access Management; cybersecurity for the Internet of Things (IoT) and Artificial Intelligence (AI), critical and emerging technologies; Education and Workforce development (NICE); Privacy Engineering Program; Small Business Program; the NIST Cybersecurity Framework; and the National Cybersecurity Center of Excellence (NCCoE).
Prior to joining NIST, Julie was the Director of the Governance, Risk Management, and Compliance Division within the U.S. Department of Health and Human Services, Office of Information Security, Office of the Chief Information Officer. Julie established a department-wide cybersecurity risk management program and spearheaded the integration of cybersecurity into HHS’ Enterprise Risk Management (ERM) framework. She was responsible for agency-wide initiatives including the implementation of Executive Order 14028, Improving the Nation’s Cybersecurity, establishment of the HHS High Value Asset (HVA) Program for the identification, protection, and prioritization of HHS’ most critical high value assets, and oversight of the HHS FedRAMP and Cloud Security Program. Julie was also the Federal Lead for the implementation of the Cybersecurity Act (CSA) of 2015, Section 405(d): Aligning Health Care Security Approaches. This public-private partnership effort received awards for excellence and contributions to the Health IT and healthcare industry communities. This is one of many HHS cybersecurity initiatives to help push forward the cybersecurity and resilience of the Healthcare and Public Health (HPH) Sector. While at HHS, Julie co-authored NIST publications on the integration of cybersecurity with ERM and managing Information and Communications Technology (ICT) risks within the context of ERM. She also initiated the creation of a crosswalk between the HIPAA Security Rule and the NIST Cybersecurity Framework. This crosswalk is now available to HPH sector stakeholders such as hospitals and healthcare facilities, small and medium-sized providers, providing additional guidance and capabilities towards implementing robust risk management programs.
Awards
- April 2024, Malcolm Baldrige Foundation Award for Leadership Excellence in Cybersecurity
- April 2024, HHS Cybersecurity Awards Program for Excellence (CAPE) Group and Professional of the Year
- 2023 Extraordinary Employee Contributions to the HHS Assistant Secretary of Administration Accomplishments
- FY 2023 OCIO Team Innovation of the Quarter, HHS 405(d) Program
- FY 2023, OCIO Leader of the Quarter
- 2022 ERM Leader of the Year, Association for Federal Enterprise Risk Management (AFERM)