Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock (
) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Julie Anne Chua (Fed)
Applied Cybersecurity Division Director
Julie is the Director of the Applied Cybersecurity Division at NIST and previously was the Director of the Governance, Risk Management, and Compliance (GRC) Division within the HHS Office of Information Security (OIS), Office of the Chief Information Officer. In her role at HHS, Julie established a department-wide cybersecurity risk management program and spearheaded the integration of cybersecurity into HHS’ Enterprise Risk Management (ERM) framework. She was responsible for high-priority, high-visibility initiatives including the implementation of Executive Order 14028, Improving the Nation’s Cybersecurity, establishment of the HHS High Value Asset (HVA) Program for the identification, protection, and prioritization of HHS’ most critical high value assets, and oversees the HHS FedRAMP and Cloud Security Program. Julie was also the Federal Lead for the implementation of the Cybersecurity Act (CSA) of 2015, Section 405(d): Aligning Health Care Security Approaches. This public-private partnership effort has received awards for excellence and contributions to the Health IT and healthcare industry communities. This is one of many HHS cybersecurity initiatives to help push forward the cybersecurity and resilience of the Healthcare and Public Health (HPH) Sector. Recently, Julie co-authored NIST publications on the integration of cybersecurity with ERM and managing Information and Communications Technology (ICT) risks within the context of ERM.
Julie also worked within the Office of the National Coordinator for Health IT (ONC) at HHS. In her previous role, Julie led extensive research and development activities to identify the best approaches for integrating emerging technologies and innovations into the existing Health IT ecosystem. Julie was also the lead on White House Critical Infrastructure cybersecurity efforts and spearheaded these initiatives across HHS, its federal partners, and the private sector. She led the effort to establish an information sharing and analysis organization (ISAO) specific for the HPH sector to enable widespread dissemination of cyber threat information, general cybersecurity best practices and lessons learned. Information sharing enhances the ability of the federal government to protect the sensitive personal and health data of millions of Americans. She also initiated the creation of a crosswalk between the HIPAA Security Rule and the NIST Cybersecurity Framework. This crosswalk is now available to HPH sector stakeholders such as hospitals and healthcare facilities, small and medium-sized providers, providing additional guidance and capabilities towards implementing robust risk management programs.
Awards
- April 2024, Malcolm Baldrige Foundation Award for Leadership Excellence in Cybersecurity
- April 2024, HHS Cybersecurity Awards Program for Excellence (CAPE) Group and Professional of the Year
- 2023 Extraordinary Employee Contributions to the HHS Assistant Secretary of Administration Accomplishments
- FY 2023 OCIO Team Innovation of the Quarter, HHS 405(d) Program
- FY 2023, OCIO Leader of the Quarter
- 2022 ERM Leader of the Year, Association for Federal Enterprise Risk Management (AFERM)