DeVault Security
About

Bio

Brandon DeVault is a Security Researcher at CrowdStrike focusing on threat actor tactics and threat hunting techniques. He is also a member of the Florida Air National Guard and works as a threat hunter on a Mission Defense Team (MDT) defending North America's air tracks. Prior to joining CrowdStrike, Brandon worked with Pluralsight as a Principal Security Author and Elastic as an Education Architect. He also worked with Special Operations Command where he had two deployments to Afghanistan on deployable communications teams.

His experience spans satellite communications, radio technologies, system and network administration. Brandon is also passionate about hardware hacking, soldering, hiking, and currently holds the GCIA, GCED, and Elastic Engineering certifications.

Speaking Engagements

Brandon has presented at major security conferences including DEF CON, ShmooCon, GrrCON, RSA, BSides, and more. View his presentation slides on SlideShare.

For a complete list of talks and presentations, including conference workshops and community engagements from 2018-2024, see the full conference speaking history in the original Hugo site's /docs/talks/ section.

Work Experience

  • Nov 2023 - Present
    CrowdStrike
    Senior Security Researcher

    Senior Security Researcher supporting OverWatch (Threat Hunting) team, focusing on threat actor tactics and advanced threat hunting techniques.

  • Oct 2021 - Nov 2023
    Pluralsight
    Principal Security Author

    Principal Security Author performing security research and focusing on general blue team operations, incident response, and threat hunting. Currently working part-time as a contract author creating courses and labs.

    Check out courses at: Pluralsight Author Profile

  • Aug 2019 - Oct 2021
    Elasticsearch
    Education Architect

    Education Architect performing security consulting and education primarily in the federal space. Developed security curriculum focused on threat hunting and incident response.

    Served as community manager for the Jacksonville Elastic Meetup Group and delivered private security training courses.

  • Mar 2019 - Aug 2019
    Perched
    Solutions Engineer

    Solutions Engineer and content contributor for tailored cybersecurity courses for operators in industry and the Department of Defense. Performed consulting for Elastic deployments and threat hunting.

    Perched was acquired by Elastic in August 2019.

  • Dec 2011 - Sep 2016
    Harris Corporation
    Software Developer

    Software developer working on a Java application delivering live geo-spatial visualizations of military assets. Developed visualizations for the SOCOM Wargame Center and operated systems for International and US Cabinet-level events.

  • Jul 2008 - Present
    Florida Air National Guard
    Cyber Security Analyst & Incident Responder

    Cyber security analyst and incident responder for the 601st Air Operations Center Mission Defense Team, defending North America’s air tracks.

    Experience includes Snort, Zeek (Bro), Elastic Stack, deep packet analysis with Wireshark and tcpdump, Arkime (Moloch), and numerous open-source tools for continuous monitoring and Blue Team operations.

    Developed the operational training plan for AFNORTH’s cyber security teams focused on air defense mission systems. Previously deployed twice to Afghanistan on deployable communications teams with Special Operations Command.