RVASEC / rvatech

About the event

You’re struggling to prioritize cybersecurity projects and vulnerabilities, all while trying to show that your team is a value add to your company. To combat this, leading cybersecurity teams have been rapidly establishing quantitative cybersecurity risk assessment processes.

In this engaging talk, we’ll explore how to transform abstract cyber threats into clear, actionable financial insights that drive smarter decisions and maximize the return on investment of your cybersecurity purchases. Discover the strategies top organizations use to align budgets with real risks and protect their bottom lin

Date & Time:

August 14, 2025 | 12-1 PM

Register for the Event

Meet the Speaker

Alex Nette, CEO & Co-Founder | Derive

Alex helped start Derive with his passion for cybersecurity and the role it plays in today’s interconnected world. He brings executive level expertise in the establishment and continuous improvement of preeminent cybersecurity programs and applies his work from various cybersecurity disciplines in a holistic approach that prioritizes organizations operations.

About the event

In this talk, we will take a look at Gen AI based attacks and how they can be used to evade legacy technologies. We’ll take a look at other areas of Gen AI and understand the different vectors companies need to consider when protecting against those types of attacks. We understand that organizations want to use AI to better their industry/business, but how do you do it in a secure fashion.

Date & Time:

July 31, 2025 | 12-1 PM

Register for the Event

Meet the Speaker

Kyle King, Security Engineering Manager | Check Point Software

Kyle King has engineered cybersecurity systems for SMBs and Enterprise organizations for highly regulated industries throughout his 25+ year career. A native of North Carolina, he has been employed by Check Point Software Technologies for the last 8+ years where he manages a team of engineers to help assess and architect security solutions to protect organizations from the ever expanding threat landscape.

About the event

Active Directory has long been a primary target for attackers-and for good reason. As a former AD architect turned pen tester, Eric has seen the same problems over and over again when it comes to securing AD. Gaining complete control over a network should be a difficult and challenging endeavor but, unfortunately, it often only takes a few steps. Eric has a secret: some simple changes would completely turn that around. In this talk, he will share a small list of AD defenses that should be in every environment. Not only would they dramatically slow down attackers, disrupt lateral movement, and increase your detection chances; but they are all native options in Windows and AD. Let’s take a hacker’s playground and make it their nightmare!

Date & Time:

June 12, 2025 | 12-1 PM

Register for the Event

Meet the Speaker

Eric Kuehn, Principal Security Consultant | Secure Ideas

Eric Kuehn is a Principal Security Consultant at Secure Ideas, where he leverages his extensive experience with Microsoft infrastructures and Active Directory to perform penetration tests and red team assessments. He also teaches a course, Red Team Fundamentals for Active Directory, where he explains the concepts, techniques and best practices for exploiting and defending AD environments. Eric has been working with Active Directory since its release and was the technical leader and architect of one of the largest and most complex AD implementations out there. He is an IANS faculty member and is passionate about sharing his knowledge and skills with others. Eric has delivered talks on Active Directory security and other topics at various conferences, events, webcasts, and Antisyphon Training.

About the event

Deep dive talk into GenAI usage and security risks and mitigation approaches

Date & Time:

May 29, 2025 | 12-1 PM

Register for the Event

Meet the Speaker

Dan Han, Chief Information Security Officer | Virginia Commonwealth University

About the event

Description: SaaS applications have introduced novel vulnerabilities that legacy security frameworks fail to mitigate effectively. A robust cyber defense against these kinds of attacks involves the Zero Trust framework, which is based on the principle of assuming no inherent trust and emphasizes the importance of “never trust, always verify.”

The session will discuss the importance of carefully vetting SaaS vendors and understanding secure application development practices in the context of the SaaS product.

Date & Time:

April 24, 2025 | 12-1 PM

Register for the Event

Meet the Speaker

Aparna Achanta, Principal Security Architect | IBM Federal Service

As a Principal Security Architect, Aparna oversaw mission-critical projects for US Federal Agencies. Aparna specializes in securing important healthcare applications and sensitive data for organizations. During her tenure, she successfully implemented the Zero Trust framework in federal agencies, which included establishing secure development practices, evaluating vendors, scanning and mitigating vulnerabilities, establishing observability, performing performance monitoring, and making sure that SaaS applications have strong security frameworks and controls in place.

Register For This Event

Register for the Event

About the Event

As geopolitical tensions continue to rise and threat actors are more driven for success than ever before, DDoS attacks are increasing in quantity, scope, and complexity. The days of old are gone and its imperative that security leaders understand the dynamic nature of today’s DDoS attacks. Join VCSP and NETSCOUT Arbor as we explore the shift change in the DDoS attack landscape and how to evaluate your vulnerability to DDoS attacks.

Date & Time:

March 21, 2024 | 12 - 1 PM

Register for the Event

Meet the Speaker

Richard Hummel, Senior Threat Intelligence Manager | NETSCOUT

Register For This Event

Register for the Event

About the Event

The AWS Security Reference Architecture (AWS SRA) is a holistic set of guidelines for deploying the full complement of AWS security services in a multi-account environment. It can be relied upon to help design, implement, and manage AWS security services so that they align with industry accepted practices. The recommendations are built around a single-page architecture that includes AWS security services. In this session, learn about the AWS SRA and how you and your team’s might rely on the AWS SRA to design and secure your cloud hosted workloads. Also learn how they help achieve security objectives, where they can be best deployed and managed in your AWS accounts, and how they interact with other security services.

Date & Time:

June 1, 2023 | 12 - 1 PM

Register for the Event

About Manny Landron

VP- Cloud Security | Enabling teams to adopt and secure AWS cloud leveraging automation as a work force multiplier.

Manny is a skilled security professional with a focus on AWS cloud security and currently heads the Cloud Security Practice at Aligned Technology Group. With over 15 years of experience, he has worked on safeguarding valuable, regulated applications and platforms in both on-premises and cloud environments. In the past, Manny contributed to information and cybersecurity programs for organizations like IAT Insurance Group and Citrix ShareFile, gaining practical knowledge in securing application workloads across various environments, with a focus on AWS. Manny holds several relevant certifications, such as the GIAC Cloud Security Automation Certification, AWS Certified Solutions Architect – Associate, and AWS Certified Security – Specialty. A graduate of Virginia Tech, he has also served in the U.S. Army, showcasing his commitment to service and professional growth.

Register For This Event

Register for the Event

About the Event

The use of Generative AI has exploded in the last year, surprising and delighting most consumers in its rise from relative obscurity. Every day there’s a new product or service taking advantage of Generative AI, and it seems that if you don’t use them you’ll be left behind. In this session we’ll look at how this AI revolution occurred, the risks and benefits of using Generative AI services, and some key tooling capabilities and best practices for governance and control in a business environment.

Date & Time:

November 16, 2023 | 12 - 1 PM

Meet the Speaker

Patrick McNeil

Senior Security Architect, GuidePoint Security

Patrick is a Sr. Security Architect for GuidePoint Security, specializing in application security and DevSecOps programs, API Security, and AI / ML. His background includes software development, system architecture design, network engineering, and security in the defense, banking, and telecom industries. Patrick is a hacker and #telephreak at heart, passionate about teaching and mentoring. He has shared his knowledge at a number of conferences, including DEFCON, DerbyCon, BSidesLV and local BSides events, CarolinaCon, CackalackyCon, regional OWASP meetings, and various telecom industry and fraud prevention forums. Patrick enjoys growing his local security community by volunteering with BSidesRDU and CackalackyCon, and is the president of a nonprofit Oak City Locksport.

Register For This Event

Register for the Event

About the Event

Join us on October 5th from 12-1 PM for the latest on where our cyber-attack surface is growing and how to reduce the risk posed by key cyber threats from nation states to critical infrastructure to malicious use of AI. We are fortunate to have a panel of front-line subject matter experts who will share their knowledge of the cyber threat challenges they face every day.

Date & Time:

October 5, 2023 | 12 - 1 PM

Meet the Speakers

Panelists:

Chris Cope, Field Supervisor, FBI

Sean Stalzer, Director, Cyber Security, Dominion Energy Services

Lance James, Founder and CEO of Unit221B, Former Deloitte Head of Cyber Intelligence, and Chief Scientist for Flashpoint

Moderator:

Beth Bergin Waller, Chair, Cybersecurity and Data Privacy
Practice, Woods Rogers Vandeventer Black

Register For This Event

Register for the Event

About the Event

The rapid scaling of quantum computers is approaching an inflection point, with profound implications for multiple industries. The business advantage is insurmountable in pharmaceutical, finance, energy, intelligence, and many other fields. It will separate the haves from the have-nots to become market leaders. The dark side is the impact to virtually all digital networks today, including all the cybersecurity tools used to protect modern enterprise and critical infrastructure. The issue is “harvest now, decrypt later” which enables the future exploitation of any data collected today and before a transition to post-quantum cryptography. However, there are powerful solutions and tools to begin preparing now.

Date & Time:

March 9, 2023 | 12 - 1 PM

Register for the Event

Meet the Speaker

Denis Mandich, CTO of Qrypt

Register For This Event

Register for the Event

Date & Time:

November 17, 2022 | 12 – 1 PM

Register for the Event

About our Speakers

Jason Ancarrow, AVP of Enterprise Cybersecurity for CarMax

Jason Ancarrow is AVP of Enterprise Cybersecurity for CarMax where he leads Cybersecurity Operations and Security Architecture. He also serves on the Advisory Board for the VCU Cybersecurity Center. In addition, Jason serves as the President of the CarMax Foundation, which directs the CarMax Foundation’s work to promote the causes CarMax Associates care about to impact the communities where they live and work. Jason was commissioned as an Officer out of college and completed his commitment with the Virginia Air National Guard. His Technology career spans over 20 years in program management, information security operations, and consulting with organizations such as AOL, Capital One, IBM, US Army, and the FBI.

He holds a BA in Economics from the Virginia Military Institute (VMI) and a MS in Information Security and Assurance from Norwich University. Jason also serves on the Board for the American Red Cross Capital Region and the Advisory Board for the VCU Cybersecurity Center and Torchlight.ai.

Ron Buchanan, Information Security Officer for Atlantic Union Bank

Ron Buchanan joined Atlantic Union Bank in 2016 as the Information Security Officer. Prior roles include Senior Director of Information Security Operations at Capital One and Vice President of the CyberCrime Investigations for State Street Bank. Ron has over 20 years’ experience in cyber security including incident response, forensics, eDiscovery, encryption, and investigations. Ron’s primary mission continues to focus on protecting assets, stakeholders, and intellectual property from cyber threats, while enabling the business to operate with flexibility and full situational awareness.

Ron has a BS in Business Management & Finance from Northeastern University and a Master of Science in Information Assurance from Norwich University. Ron has obtained certifications as a CISSP, CISM, and EnCE (Encase Certified Examiner). Ron is also a member of ISSA, and the FBI’s InfraGard and Citizens Academy programs. Ron serves on the Board of the Virginia Cyber Security Partnership.

Register For This Event

Register for the Event

Date & Time:

October 27, 2022 | 12 – 1 PM

Register for the Event

About our Speaker

Rob Hankison, Cyber Security Specialist Leader at Deloitte

Rob Hankinson is a Cyber Security Leader for Deloitte, specializing in advising federal agencies and states on how to transition to a Zero Trust architecture. Rob has over 25 years of cyber security experience, most of which is as a director for information technology for the U.S. Department of State. Rob also spent some time with the Office of Management and Budget’s (OMB) Office of the Federal CIO where he helped shape federal policy regarding IT security and communications.

Register For This Event

Register for the Event | View the Full Event Agenda

Date:

July 13, 2022

Time:

1 – 4 PM

Register for the Event

Schedule:

1:00 - Welcome by VITA
1:15 - IT Security in the Hybrid World with Randy Marchany / Virginia Tech
2:00 - MACH37 Introduction with Mike McCoy / MACH37
2:10 - Problems, Solutions, Use Cases and Traction by MACH37 Cohorts
3:10 - From the Trenches / Call-in from Kyiv, Ukraine with Hideez
3:55 - Upcoming Events by VITA
4:00 - Adjourn

View the Full Event Agenda

Session Details

"IT Security in the Hybrid World" w/ Randy Marchany

The hybrid work world has required us to change our security architectures to adapt to an environment where organizations have limited visibility to endpoints. This shift incorporates strategies involving zero trust principles, moving away from network-basedIDS/IPS as line speeds increase, and vulnerability management/scanning of external networks. The era of corporate network boundaries is ending.

MACH37 Introduction + Cohort Presentations

MACH37 is a start-up accelerator designed to facilitate the creation of the next generation of cyber product companies.

5 Cybersecurity companies (cohorts) participating in MACH37 will present 12 minutes each on their problem, solution, use cases and traction they have made since graduating from MACH37.

"From The Trenches"

Hideez a MACH37 graduate company will describe how they are helping defend critical infrastructure from Russian cyber attacks.