Russell Eubanks

As owner of Security Ever After and consultant for Enclave Security, Russell is responsible for assessing the cyber security  maturity of many diverse organizations and helping them increase the maturity, while decreasing the probability of a breach. He wrote the first paper on how to implement the Critical Security Controls, "A Small Business No Budget Implementation of the SANS 20 Security Controls," and serves on the editorial panel for the Critical Security Controls. As a current handler for the SANS Internet Storm Center and former chief information security officer (CISO), he's especially passionate about helping new or aspiring cyber leaders become more effective.

More About Russell


From factory worker to owner of Security Ever After and consultant with Enclave Security, Russell Eubanks' career trajectory has been anything but traditional. Years ago, while working a factory job, Russell realized he wanted more and started investigating options. He learned about his company's tuition reimbursement program and promptly signed up for computer classes at his local community college. He worked in the factory until early morning then attended classes during the day.

"My employer paid for all of my tuition and expenses," says Russell. "I remain amazed and grateful for that benefit." Back then, the Y2K crisis was looming and companies were desperate for cyber security talent. Russell secured his first position before he'd even finished his degree.Russell is a certified instructor for SANS, teaching MGT415: A Practical Introduction to Cyber Security Risk Management; MGT514: Security Strategic Planning, Policy, and Leadership; and SEC566: Implementing and Auditing the Critical Security Controls - In-Depth and MGT 521: Driving Cybersecurity Change - Establishing a Culture of Protect, Detect and Respond.

Russell's experience with SANS started in 2003 when he took the Security 401 course. "I thought I knew all there was to know," he says. "As it turned out, I was in over my head before lunch on the first day." His instructor told him that not many students followed through and earned the GSEC certification, so Russell decided right then that he would. He went on to participate in the SANS Mentor Program, eventually becoming an instructor himself. Throughout that time, Russell has found the best part of teaching is the ongoing education he gets from his students. "I know they have something to share that will make me become a better cyber security professional," he says.

Russell encourages students to prepare for their SANS courses as they would a college class, eliminate distractions and arrive ready to engage with the instructor and fellow students. "I intentionally focus on key takeaways each day that the students can apply when they get back to work," he says. "I love when students apply them while they are still in class!"

Perhaps most important of all, Russell brings his heart to what he teaches. "I want those I have mentored to know that I gave my all to help them become the absolute best version of themselves. I want them to have every single advantage that I always longed for and did not see or act upon until much, much later," he says.

Russell holds a bachelor's degree in computer science from the University of Tennessee at Chattanooga. In his free time, Russell studies leadership, keeps up with his wife and teenage son and daughter, and loves to smoke pork on his Big Green Egg. "Only recently I learned about the importance of disconnecting from technology on a regular basis," he says. "I have my best ideas when I am away from a screen." Russell also stays busy with his recently-discovered passion for running and just recently ran the Disney Star Wars Dark Side Half Marathon with several SANS colleagues.

Russell authored the first paper on how to implement the Critical Security Controls, "A Small Business No Budget Implementation of the SANS 20 Security Controls," for SEC566: Implementing and Auditing the Critical Security Controls - In-Depth.

·    Web:

·       GIAC Strategic Planning, Policy, and Leadership (GSTRT)
·       Certified Information Security Manager, ISACA
·       Certified Information Systems Security Professional, ISC2
·       GIAC Certified Enterprise Defender (GCED)
·       SANS GIAC Certified Incident Handler (GCIH)
·       SANS GIAC Certified Intrusion Analyst (GCIA)
·       SANS GIAC Certified Penetration Testing (GPEN)
·       SANS GIAC Certified Project Manager (GCPM)
·       SANS GIAC Critical Controls Certification (GCCC)
·       SANS GIAC Information Security Professional (GISP)
·       SANS GIAC Security Essentials Certification (GSEC)
·       SANS GIAC Web Application Penetration Testing (GWAPT)