Primary Job Title Chief Information Security Officer Primary Organization Virginia Tech
Location Roanoke, Virginia, United States Regions East Coast, Southern US Gender Male
LinkedIn View on LinkedIn X (Twitter) View on X
Randy Marchany is the University Information Security Officer for Virginia Tech. He is also the director of the VA Tech IT Security Lab, a component of the university's Information Technology Security Office. He's been in the cybersecurity business since 1991.
He is a co-author of the original FBI/SANS Institute's "Top
10/20 Internet Security Vulnerabilities" document which was one of the reference documents for the Top 20 Critical Controls.
He is the co-author of the SANS Institute's "Responding to Distributed Denial of Service Attacks" document that was prepared at the request of the White House in response to the DDOS attacks of 2000. He was part of the SANS Institute's Secure Code project that developed a set of exams to test programmers' knowledge of secure coding techniques.
He has been a member of the SANS Institute's faculty since 1992 and wrote the original SANS IT Audit course. He is one of the original members of the US Cyber Challenge (USCC) Project.
The USCC mission is to significantly reduce the shortage in the cyber workforce by serving as the premier program to identify, attract, recruit and place the next generation of cybersecurity professionals. He designed the curriculum for the USCC summer camps. He was a recipient of the SANS Institute's Security Technology Leadership Award for 2000.
He was a recipient of the VA Governor's Technology Silver Award in 2003. He was part of the team that won the EDUCAUSE Excellence in Information Technology Solutions Award in 2005. He is a co-holder of two cybersecurity patents.
