Russ Avey
Alexandria,US
Summary
Proven leader in cybersecurity and program management, adept at driving significant security advancements within the United States Air Force and DARPA. Specializes in security architecture and stakeholder management, overseeing a $75M portfolio to enhance national security. Demonstrates exceptional problem-solving skills and a commitment to achieving strategic objectives. Currently utilizing a TS/SCI with a CI Poly.
Overview
15
15
years of professional experience
1
1
Certification
Work History
Director of Cybersecurity, Air Operation Center 10.1 WS
United States Air Force
Washington D.C.
11.2023 - Current
- Serve and lead as the Director of Cybersecurity for the AFMC C3BM 10.1 C2 Command and Control Security Division for the Kessel Run software development factory.
- Perform and lead a team of 30+ personnel in establishing security requirements, analysis, security requirements definition, system security design, security architecture generation, and security verification and validation.
- Lead the authorization and assessment policy team, the software assessors, and the cyber security engineers' team as the Division Chief for the 10.1 security division.
- Responsible for making risk-based decisions regarding the operations of the Kessel Run Security for the Software Factory, AWS GovCloud Infrastructure, and Cloud and Operations.
- Managed the KR/HBB incident response processes and led the response to cybersecurity incidents and data spills.
- Drafted, reviewed, and approved security policies for the organization, carefully balancing operations and security.
- Facilitated meetings with the team and across Kessel Run, including working groups and decision briefs, based on the risks and benefits of specific actions/changes.
- Defined and tracked security metrics, and kept the CTO and CSO informed about relevant trends.
- Provide leadership, mentoring, and quality assurance for division team members as the security SME.
- Maintained and managed a $25M annual security program budget.
Chief Security Officer
Defense Advance Research Project Agency (DARPA)
Arlington, VA
09.2022 - 11.2023
- Led as Chief Security Officer for ITD Cyber-Security Division at MNSS supporting DARPA.
- Perform and lead a team of 80+ personnel in establishing security requirements, analysis, security requirements definition, system security design, security architecture generation, and security verification and validation.
- Provide operating system hardening and system patching guidance based on DISA STIGs, and NIST 800 publications.
- Responsible for implementing Zero Trust, ICAM (Identity, Credential, and Access Management), and other cybersecurity technical advances.
- Oversaw vendor management for security tools, initiating corrective actions as needed.
- Maintain oversight of the 24/7 Security Operations Center to properly address or escalate any security-related event.
- Provide oversight and final review for the Security Control Assessors for all DoD and DARPA-related systems accreditations.
- Prepare and review documentation to include System Security Plans (SSPs), Risk Assessment Reports, ATO packages, and SRTMs.
- Leads major audits for the organization, including the Cyber Security Service Provider (CSSP) and the Command Cyber Operational Readiness Inspection (CCORI).
- Directed a $25 million yearly security program financial plan.
Senior Cloud Security Delivery Manager
Accenture Federal Services
Arlington, VA
11.2020 - 12.2022
- Delivered security offerings encompassing cloud security components such as governance, strategy, and risk management for Intelligence Community and Department of Defense.
- Spearheaded Cybersecurity Maturity Model Certification (CMMC) implementation program for DoD.
- Collaborated with stakeholders and partners to gather and define Cloud Migration requirements for the JETS program at DLA.
- Recommended courses of action for implementing innovative cyber security technologies.
- Managed cybersecurity efforts across multiple cloud platforms, including AWS, Azure, Oracle Cloud, and Google Cloud.
- Prepared and reviewed documentation including System Security Plans (SSPs), Risk Assessment Reports, ATO packages, and SRTMs.
Senior Program Manager Azure Global Security
Microsoft
Reston, VA
04.2019 - 11.2020
- Worked as a cleared Senior Program Manager who managed several Azure global hardware initiatives.
- Implemented Azure GOVCLOUD solutions for critical data assets of various defense and intelligence entities.
- Created an approach targeting effective and efficient engineering requirements within the Azure Global LX initiative.
- Coordinated internationally with cross-functional teams to adhere to strict deadlines.
IC CIO Security Program Manager
Office of the Director for National Intelligence
Bethesda, MD
06.2014 - 04.2019
- Directed design, evaluation, implementation, and maintenance of IC SCC cybersecurity services.
- Oversaw the implementation of actionable cyber training and exercise plans for the annual ODNI IC CIO program.
- Guided junior engineers in developing cybersecurity solutions across all project stages.
- Worked alongside experts to implement solutions for robust network protection and streamline processes in cybersecurity operations.
- Worked seamlessly with IC and IC partners on cybersecurity issues involving executives, managers, engineers, analysts, incident responders.
- Directed 22-member team of civilian employees and contractors to achieve program goals and deadlines.
- Oversaw $75M in technical and contractual projects to ensure timely completion.
Senior Technical Intelligence Officer
Department of Defense (Consultant)
Stuttgart, Germany
03.2010 - 06.2014
- Researched relevant databases and archives to gather additional information related to ongoing investigations.
- Performed reconnaissance operations across locations to gather important field intelligence.
- Prepared weekly briefings for senior staff members outlining recent developments in global security issues.
- Conducted all-source analysis of foreign countries, organizations, and individuals to identify threats to national security.
- Participated in interagency meetings regarding strategic planning efforts related to national security issues.
- Collaborated with other government agencies on counterterrorism initiatives and shared best practices in intelligence gathering techniques.
Education
Bachelor of Science - Organizational Psychology and Information Technology
George Mason University
Fairfax, VASkills
- Program Management
- Security architecture
- Security policy development
- Threat intelligence
- Application security
- Compliance Risk Assessment
- Business continuity
- Cloud security
- Acquisitions
- Decision-making
- Policy and procedure improvements
- Stakeholder management
- Agile projects
- Problem-solving
- Budgeting and resource management
- Risk analysis and management
Professional Community Associations
- ISACA, 2018
- EC Council, 2018
- ISC2, 2013
- PMI, 2022
Certification
- Project Management Professional - PMP
- Certified Information Security Manager – CISM
- Certified Ethical Hacker – CEH
- Azure 900 Certification
- Splunk Core Certified User
- Certified Network Defense Architect - CNDA
- 8570/8140 IAM III Certified
Qualifications Summary
Seasoned, result-driven information security professional with a demonstrated record of managing, constructing, employing, and monitoring effective cyber-security and cloud security efforts. Expertise with Cybersecurity in cloud environments (AWS, Azure, Google Cloud, etc.) program management, JIRA, business continuity capacity planning, incident response, and data security. Innovative advisor with proven success managing projects and programs, forecasting, and conquering resource constraints to ensure sustainability. Transformational leader adept at collaborating across levels, mentoring teams, and liaising with executives to build consensus and drive efficiency. Currently I possess a Top Secret/Sensitive Compartmented Information (TS/SCI) with a CI Poly.
Personal Information
Citizenship: US Citizen
References
References available upon request.
Timeline
Director of Cybersecurity, Air Operation Center 10.1 WS
United States Air Force
11.2023 - Current
Chief Security Officer
Defense Advance Research Project Agency (DARPA)
09.2022 - 11.2023
Senior Cloud Security Delivery Manager
Accenture Federal Services
11.2020 - 12.2022
Senior Program Manager Azure Global Security
Microsoft
04.2019 - 11.2020
IC CIO Security Program Manager
Office of the Director for National Intelligence
06.2014 - 04.2019
Senior Technical Intelligence Officer
Department of Defense (Consultant)
03.2010 - 06.2014
Bachelor of Science - Organizational Psychology and Information Technology
George Mason University
Similar Profiles
Sean ChapmanSean Chapman
Non-Commissioned Officer at Health Service Management/United States Air Force, United States Air Force ReserveNon-Commissioned Officer at Health Service Management/United States Air Force, United States Air Force Reserve
THOMAS F. GOODTHOMAS F. GOOD
COMMAND CHIEF MASTER SERGEANT, TWENTIETH, Senior Intelligence Analyst at UNITED STATES AIR FORCE F.E. Warren AIR FORCE BASE, AIR FORCECOMMAND CHIEF MASTER SERGEANT, TWENTIETH, Senior Intelligence Analyst at UNITED STATES AIR FORCE F.E. Warren AIR FORCE BASE, AIR FORCE
Carter PalsCarter Pals
F-16 Crew Chief at U.S. Air Force, United States Air Force BaseF-16 Crew Chief at U.S. Air Force, United States Air Force Base
Michele CoxMichele Cox
Pharmacy Technician at United States Air Force, Tyndall Air Force BasePharmacy Technician at United States Air Force, Tyndall Air Force Base
CHRISTOPHER LEON ARROYOCHRISTOPHER LEON ARROYO
Data Center Technician at AmazonData Center Technician at Amazon