Russ Smoak


Security Intelligence Operations

Russ Smoak is Director of Security Research and Operations at Cisco. Russ is responsible for multiple security programs focused on product vulnerability disclosure, Intrusion Prevention System signature development, and penetration testing as well as security vulnerability research. In addition, Russ and his team collaborate globally across all business functions within Cisco to ensure delivery of timely and actionable security-focused content to Cisco customers and partners through portals such as IntelliShield and Cisco Security Center.

Russ and his teams actively participate in the security community and many industry forums, conferences and events. Russ is on the board of directors of the Industry Consortium for Advancement of Security on the Internet (ICASI, www.icasi.org) which was formed to address international, multi-product security challenges and drive collaborative incident response practices in the industry. Prior to his current role, Russ built a unique portfolio of experience within Cisco through successful positions in Engineering, Customer Advocacy, and Sales.


April 23, 2015


Best Practices: Device Hardening and Recommendations

2 min read

On April 13th, 2015, Cisco PSIRT was made aware of multiple instances of customer disruption in a specific region caused by a denial of service attack against Cisco devices. We responded quickly to support speedy restoration for our customers. Our ongoing investigation has shown that the storage of some Cisco devices was erased, removing both […]

January 21, 2014


Cisco 2014 Annual Security Report: Threat Intelligence Offers View into Network Compromises

2 min read

Thanks to extensive detection telemetry and analytics, we have a clear view into the attackers and malicious actors that are infiltrating Internet infrastructure and using trusted applications as a foothold for gaining access to networks. As explained in the Cisco 2014 Annual Security Report, online criminals continue to develop more sophisticated methods for breaching security […]

February 14, 2013


Reflections from a road trip: The evolving risk of DDoS attacks

The author, Russ Smoak (Director of Cisco Security Intelligence Operations), discusses some of the feedback received from customers recently with regard to the Distributed Denial of Service (DDoS) activities that have occurred over the last few months. One of the main themes from this post is that it is time to start considering the threat of DDoS as a business continuity risk and not necessarily just a security concern.