Colleen M Lohr
Business Operations & Technology Systems Leader
I help organizations turn messy operations into resilient systems — across process, technology, vendors, compliance, reporting, documentation, and cross-functional execution.
My background spans 20+ years in software, infrastructure, cybersecurity governance, and operational leadership, including Director-level ownership of technology systems, M&A assessments, risk controls, vendor coordination, reporting workflows, and business process automation in multi-entity manufacturing environments.
About
I build operational clarity inside organizations that have outgrown duct tape, heroics, and tribal knowledge.
My work sits at the intersection of business operations, technology systems, governance, compliance, vendor management, documentation, and process improvement. I have led technology and cybersecurity operations in a manufacturing-adjacent business environment, owned infrastructure and SaaS systems, coordinated vendors and internal stakeholders, created reporting workflows, and helped teams turn scattered processes into usable systems.
I bring a technical background, but I am not interested in technology for its own sake. I care about whether systems work, whether people can use them, whether risks are understood, whether decisions are documented, and whether the organization becomes more resilient after the work is done.
My current focus is business operations, infrastructure-adjacent systems, sustainability, and civic-scale operational resilience.
Dual-certified. The audits I run on my own code would scare your current vendor.
From NASA contracting to crypto C-suite to founding 0x R&D. Teams led, systems built, fires survived.
Measurable impact across security, infrastructure, and product.
Experience
Download CVFounder & CEO
0x R&D provides advisory and systems consulting for organizations navigating technology change, operational complexity, and risk. Focus areas include practical AI implementation, business operations strategy, GRC and risk assessments, systems architecture, ERP migrations and implementations, vendor and platform evaluation, and technology due diligence for M&A, modernization, and organizational scaling.
Director of Technology & Cybersecurity
Led enterprise technology strategy, cybersecurity governance, and infrastructure operations for a multi-entity food manufacturing, institutional food service and catering organization. Owned systems design, internal GRC frameworks, cybersecurity policies, employee training, software usage controls, and vendor security compliance. Implemented and managed SaaS platforms, systems integrations, data/reporting workflows, archive/data warehouse access, and business process automation across operations, finance, sales, and manufacturing workflows. Managed technology vendors, support agreements, pricing negotiations, onboarding, documentation, and cross-department technical support. Coordinated RFP and project work across departments; provided executive reporting and strategic technology advisement to leadership
Founder & Principal Engineer
Eight years of independent consulting for multile organizations across software architecture, security design, and systems engineering. Clients ranging from startups to enterprise. Delivered resilient systems, clearer processes, and operational controls that supported day-to-day execution.
- Bachelor of Science in Business Management - WGU - Graduation in 2026
- CISSP
- SSCP
- Google Compute Engine
Case Studies & Selected Work
A practical record of building clearer systems, stronger controls, and more reliable workflows across operations, technology, governance, and organizational change.
Rust-native reverse proxy and WAF. Caught and resolved 49 security findings in its own audit. Test coverage grew from 215 to 393 during hardening. It defends itself first. DETAILS COMING SOON.
Open-source SOC playbooks, runbooks, and tooling. DETAILS COMING SOON.
Local-first AI orchestration platform. Rust/Tauri/Svelte. Ephemeral agent primitives with isolated memory, a behavioral watchdog with kill authority, and egress protection that assumes every outbound call is hostile until proven otherwise. DETAILS COMING SOON.
A sample incident report detailing a simulated security breach scenario. The report includes an executive summary, timeline of events, impact assessment, root cause analysis, and recommended remediation steps.
A detailed case study of a security architecture project for a manufacturing client with a vulnerable HVAC control system. The case study covers the risk assessment process, design and implementation of a threat isolation strategy, and the measurable outcomes in terms of risk reduction and operational stability.
A strategic framework for modernizing legacy IT infrastructure without risking operational stability. The framework includes a step-by-step process for assessing existing systems, identifying modernization opportunities, and implementing changes in a way that minimizes risk and maximizes resilience.
A sample risk exposure report for a hypothetical e-commerce company undergoing PCI DSS compliance. The report identifies and assesses risks across the cardholder data environment, providing actionable insights for remediation and risk reduction.
Let's work together.
I’m focused on business operations, technology operations, systems governance, process improvement, vendor coordination, reporting, documentation, and infrastructure-adjacent work.
I’m especially interested in organizations working in operations-heavy environments: manufacturing, food systems, utilities, public infrastructure, sustainability, climate resilience, civic systems, logistics, facilities, and institutional operations.