Colin Morrell - Health IT Software Security Consultant

Colin Morrell

Health IT Software Security Consultant

Colin Morrell, BS is a Software Security Consultant with over 5 years of experience specializing in application security through static and dynamic analysis. He uses his background in offensive security testing to help improve software and IT security based on industry best practices. His security consulting experience has focused on some of the largest Fortune 100 healthcare and financial institutions in the world.

Since joining the Quandary Peak team, Colin has focused on securing patient data in EHR software through continuous security auditing, using applicable standards such as HIPAA, NIST, OWASP, and ISO27001. This includes dynamic application testing, as well as static analysis of software vulnerabilities on the code level to integrate in-depth, proactive security practices throughout the Software Development Life Cycle (SDLC.)

Areas of Expertise

  • Programming Languages

    Python, Java, C, C++, Javascript, COBOL

  • Security Tools

    BurpSuite, Metasploit, Kali Linux, Nmap, Splunk, Wireshark

  • Operating systems and servers

    Linux, Windows, macOS, UNIX

  • Networking and protocols

    TCP/IP, UDP, DNS, SSH, HTTP/S, FTP/S, DHCP, SMTP, ICMP, Kerberos, SMB, Telnet, Git, Active
    Directory

  • Regulatory & Compliance

    OWASP, NIST, HIPAA, PCI-DSS, GDPR

Meet More of Our Experts


Anna Goujon - Project Coordinator
Anna Goujon
Project Coordinator Nashville

Anna Goujon has expertise in organizing and supporting EHR software quality, regulatory, and patient safety audits. She has a background in scientific research from Purdue University.

Brad Ulrich - Software Expert Witness
Brad Ulrich
VP of Health IT and Audits Nashville

Brad Ulrich has a diverse career as a computer scientist, software engineer, technology manager, and entrepreneur. His experience spans software design, programming, patent management, healthcare, mobile devices, startups, technology licensing, regulatory compliance, and risk management.

Andrew Holm-Hansen - Health IT Solutions Architect
Andrew Holm-Hansen
Director of Health IT Engineering Nashville

Andrew Holm-Hansen has worked in Health IT for 15 years as a Health IT Solutions Architect. He led several development teams during his career at Vanderbilt University Medical Center.

Ajit Dhavle
Ajit Dhavle, Pharm.D.
Vice President – Health IT Audits and Life Sciences Nashville

Ajit Dhavle is a healthcare technologist, clinician, entrepreneur and a problem solver with 15+ years of experience in digital health, quality, e-medications, Health IT standards, and patient safety.

Daniel P. Bullington
Daniel P. Bullington
Sr. Software Architecture Consultant Nashville

Daniel P. Bullington has an impressive technology career spanning over 20+ years. Daniel quickly grew into a leader and architect, having earned the trust of business stakeholders and technical experts alike. His deep and wide experience in highly regulated industries such as healthcare and finance gives Daniel a unique perspective on business…

Ali Khoshgozaran - Computer Scientist
Ali Khosh, PhD
Testifying and Consulting Expert Los Angeles

Dr. Ali Khosh is a computer scientist, entrepreneur and technology executive with years of experience at leading tech companies including Microsoft, Yahoo and Samsung. Ali serves as an expert in various software-related litigation matters (patent infringement, trade secret, etc.) and technical due diligence of emerging technology (VC investments, M&A transactions).