Amélie Koran

LEADER.HACKER.THINKER

PHONE NUMBER

336-459-0333

E-MAIL ADRESS

webjedi@mac.com

LOCATION

Spanaway, WA 98387

NAME:

Amélie Erin Koran

DATE OF BIRTH:

March 1975

EXPERIENCE:

Security, Technology and Policy Executive

HOBBIES:

Bicycling, Swimming, Motorcyling, Music

SOMETHING ABOUT ME

Adept senior technology leader with broad experience in both public and private sectors across a range of business sectors. Over 20+ years of progressive hands-on experience in advanced technologies and cybersecurity practices, developing tactical and strategic execution goals. Led teams of over 100 staff to deliver solutions across multiple product and service delivery lines utilizing Agile frameworks in a DevSecOps environment.

At the U.S. Department of Health and Human Services, Office of the Inspector General (HHS OIG), executed over $40m budget to 99.97% efficiency. Developed comprehensive proposals across organizational divisions to continue investment in new technologies and modernization, resulting in year-over-year increased portfolio growth, delivery, and comprehensive resource management activities.

Bootstrapped numerous major initiatives across government and industry; including the US Digital Service (USDS), the President’s Management Agenda for the Open Data Initiative, U.S. Department of the Interior’s first mobile technology strategy, and led the 2014 revision to the Federal Information Security Management Act (FISMA) through agency clearance and approval at Office of Management and Budget (OMB) in the Executive Office of the President (EOP).

TALKS

DEFCON 28 – ELECTION SECURITY

read more

SHMOOCON 2020 – ELECTION SECURITY

read more

INTEROP 2020 – “MAD MAX”

read more

ALLDAYDEVOPS 2020 – “RONIN”

read more

UNC CYBERSECURITY SYMPOSIUM – “KINGSMAN”

read more

SHMOOCON 2019 – FIREMEN VS. SAFETY MATCHES

read more

DEVSECOPS ROCKIES – BUILDING BRIDGES, NOT BURNING THEM

read more

DEVOPS WORLD 2020 – “OVERCOMING INERTIA AT SCALE”

read more

THE DIANA INITIATIVE – “DEVSECOPS IS A TEAM SPORT”

read more

DEFCON 28 – THE INDIVIDUAL CONTRIBUTOR TO TECH EXECUTIVE, AND BACK AGAIN

read more

ALL DAY DEVOPS – SPRING BREAK EDITION –

read more

ALL DAY DEVOPS 2018 – ZERO GAIN VS. ZERO LOSS

read more

OneLogin Connect – DUNNING-KREUGER EFFECT OF DEVSECOPS

read more

INFOSEC WORLD 2018 – ARE WE THERE YET?

read more

RUBRIK DATA SECURITY SUMMIT – DATA SECURITY AND PRIVACY IN UNCERTAIN TIMES

read more

Beyond Firemen vs. Safety Matches – Growing the DevSecOps Talent Pipeline

read more

HealthConDX – Challenges of Digital Oversight in Healthcare

read more

HackerCon / Red Team Village – Seeking The Upside

read more

Boston Security Meetup – Why Can’t Johnny Regulate

read more

NADOG – Hello, Goodbye – Are You Really Ready for DevSecOps?

read more

WRITING

SolarWind

Fighting the (f)IR(e) : Bucket Brigade, Not More Matches

Hey, you in enterprise IT… having a pretty crappy week this week, huh?! I get it, I’ve been there – multiple times – before. If it’s not because of this one[…]

Read more
A Confederacy of Dunces

A Confederacy of Dunces — The Role of Education and Experiences in Cybersecurity

If there’s anything that will set the tone of this article is that I cringe and pause every time I have to write “cybersecurity” in a non-ironic way in anything.[…]

Read more
OECD

Life (and Tech) After Government

During my career, I’ve worked for or in the Federal government several times, nearly in every way you could – a contractor, as an FFRDC staff, and two tours as[…]

Read more
Iowa Democratic Primary

“Test-Driven Democracy” — A DevOps Analysis of the Iowa Democratic Caucus

Unless you’ve been living under a rock news-wise in the United States, this has been a very hefty week in American politics, topped off with an Impeachment vote that may,[…]

Read more
COVID-19 Virus

Love In the Time Of COVID-19 : Social Separation, Adaptive Technology And You

Much is to be said about the benefits and downfalls of technology in the age of a global pandemic and how individuals adapt to either the availability of it or[…]

Read more
Soup

If I Can DevOps, So Can You – Part VII : “You can put nearly anything in a pot and call it soup…”

When trying to wrap my own head around what I was going to need to actually implement a basic automated deployment pipeline with the kind of tools I felt that[…]

Read more

MY EXPERIENCE

2019 – PRESENT

-SPLUNK, INC.

SENIOR TECHNOLOGY ADVOCATE

Executive and senior-level engagement for IT markets regarding DevOps/DevSecOps practices, IT transformation, modernization, data governance and management for current and prospective customers.

Advocacy roles for in-person events, on-line and print media, and strategic engagements with internal and external groups to counsel on best practices, future capabilities and community and customer outreach.

2018 – 2019

-U.S. DEPARTMENT OF HEALTH AND HUMAN SERVICES – OFFICE OF THE INSPECTOR GENERAL

CHIEF TECHNOLOGY OFFICER

Managed the analysis and digital transformation of various business processes to support HHS OIG mission activities and strategic priorities, including business process reengineering and resource management techniques.

Led the introduction of new cloud services platform, and development of “first of its kind” services within government, including human resource processing and investigative support solutions.

2017 – 2019

-U.S. DEPARTMENT OF HEALTH AND HUMAN SERVICES – OFFICE OF THE INSPECTOR GENERAL

DEPUTY CHIEF INFORMATION OFFICER

Provided oversight, program direction and planning for management and support of information technology activities nationwide within HHS OIG by leading the formulation, development and administration of information technology systems objectives, plans, policies, and projects to meet organization needs.

Consulted with customers and IT managerial staff to identify and define strategic requirements that will allow the Office of Information Technology (OIT) to significantly improve agency operations whether that might be in terms of effectiveness, efficiency or both.

2015 – 2017

-U.S. DEPARTMENT OF THE TREASURY

MANAGER – SECURITY ARCHITECTURE AND SERVICES

Provided oversight and expertise in information security of all IT systems operated by or on behalf of the Department of the Treasury to ensure they are adequately protected to ensure confidentiality, integrity and availability in order to minimize the risk of unauthorized access, use, disclosure, disruption, modification or destruction.

Provided guidance and leadership to support and implement a disciplined information security management strategy that focuses on managing risk and optimizing cost-effectiveness for the Department of Treasury’s Office of the Chief Information Officer.

2014 – 2015

-THE WALT DISNEY COMPANY

SENIOR ARCHITECT – ARCHTECTURE AND TECHNOLOGY STRATEGY

Developed enterprise-wide technology strategy to address differences between business units, and also find efficiencies through shared technologies and services

Provided vendor screening and management, research and solution evaluation to Walt Disney Company business units including those encompassing cloud, mobility, security, application and data services and technologies

2010 – 2014

-U.S. DEPARTMENT OF THE INTERIOR

CHIEF ENTERPRISE SECURITY ARCHITECT

Served as lead technical advisor to the Office of the Chief Information Officer (OCIO) and other Agency divisions on information service and technology planning, development, construction, and implementation of security controls, techniques and policies.

Provided technical security evaluations of new exploratory technologies, including guiding development of security technical implementation guidance (STIG) and associated policies.

2014 – 2014

-OFFICE OF MANAGEMENT AND BUDGET – EXECUTIVE OFFICE OF THE PRESIDENT

IT POLICY ANALYST – STRATEGY, POLICY & COMMUNICATIONS

Provided technical and editorial review on OMB circulars, exhibit updates, revisions as well as draft and proposed legislation and served as subject matter expert for cybersecurity, policy development, workforce analysis and user experience activities

Reviewed proposed legislative activity and provided feedback on feasibility, implementation challenges and potential agency impacts, including most cybersecurity related activities, and served as internal technical expert in cybersecurity and applied information systems to E-Gov office and sponsored working groups.

2009 – 2010

-CERT/CC – CARNEGIE MELLON UNIVERSITY / SOFTWARE ENGINEERING INSTITUTE

COMPUTER SECURITY INFORMATION ANALYST

Primary liaison for a collaborative information-sharing environment supporting and of assisting in criminal, counterintelligence, counterterrorism, and fraud investigations of the Defense Criminal Investigative Organizations (DCIOs) and DoD counterintelligence activities.

Lead consultative resource for analysts and division leadership regarding incident handling and response, mentoring resource for analysts and primary technical reviewer for generated analysis products

Contact ME