State Chief Risk Officer
Torry Crass joined the N.C. Department of Information Technology as the state chief risk officer in May 2023. In his role, he focuses on increasing the cyber maturity of the state and strengthening NCDIT’s whole-of-state approach to cybersecurity with local, state and federal partners.
Crass brings 25 years’ experience in IT and more than a decade focused on cybersecurity in global enterprise environments. He is recognized as a subject matter expert in infrastructure, operations and security in the IT security community and has led during various security incidents with diverse partners, including law enforcement.
Previously, Crass served as chief information security officer for the N.C. State Board of Elections for nearly four years through a contract with Woodstar Labs. In that role, he oversaw implementation of the Board of Elections’ security roadmap and provided operational guidance for its security program with the goal of reducing risk. Crass also served as a security liaison between the board and its security partners, including NCDIT, the N.C. National Guard, N.C. Department of Public Safety, Federal Bureau of Investigation and U.S. Cybersecurity and Infrastructure Security Agency.
In addition, Crass has more than 20 years’ experience in private-sector IT, including as a CISO for LEO Cyber Security and senior lead of information security and interim CISO for SPX Corporation. He also volunteers as the program director for the InfraGard National Cyber Camp program, a partnership to assist in sharing information and intelligence between private industry and government and serves as a second lieutenant in the South Carolina State Guard.