About Me

My experience and work history.

Bio and Talks

Bio


Brandon DeVault is a Security Researcher at CrowdStrike focusing on threat actor tactics and threat hunting techniques. He is also a member of the Florida Air National Guard and works as a threat hunter on a Mission Defense Team (MDT) defending North America’s air tracks. Prior to joining Pluralsight, Brandon worked with Pluralsight as a Principal Security Author and Elastic as an Education Architect. He also worked with Special Operations Command where he had two deployments to Afghanistan on deployable communications teams. His experience spans satellite communications, radio technologies, system and network administration. Brandon is also passionate about hardware hacking, soldering, hiking, and currently holds the GCIA, GCED, and Elastic Engineering certifications.

Conferences and Workshops:


To see a full list of my community engagements, see: Talks & Presentations

CrowdStrike

Nov 2023 - Present


I am currently a Senior Security Researcher for CrowdStrike supporting OverWatch (Threat Hunting).

Pluralsight

Oct 2021 - Nov 2023

I worked full-time as a Principal Security Author for Pluralsight performing security research and focusing on general blue team operations, incident response, and threat hunting. I currently still work part-time for Pluralsight as a contract author.

Check out some of the courses and labs I've authored here: Author Profile.

Florida Air National Guard

Jul 2008 - Present


I am also a current member of the Florida Air National Guard. I work as a cyber security analyst and incident responder for the 601st Air Operations Center Mission Defense Team.

Experience here includes tools such as Snort, Zeek (Bro), Elastic, deep packet analysis with Wireshark and tcpdump, Arkime (Moloch), and numerous other open-source tools for continuous monitoring and Blue Team operations.

I developed the operational training plan for AFNORTH's cyber security teams focused on air defense mission systems.

Elasticsearch

Aug 2019 - Oct 2021


I previously worked as an Education Architect for Elastic performing security consulting and education primarily in the federal space. I am constantly developing new security curriculum focused around threat hunting and incident response. Check out some of the courses I've authored here: Private Training.

I also served as a community manager (and remain an active member) for the Jacksonville Elastic Meetup Group.

Perched

Mar 2019 - Aug 2019


Prior to working at Elastic, I worked as a Solutions Engineer for a small startup called Perched

Here I was a content contributor and educator of tailored courses for Cyber Security Operators in industry and the Department of Defense. I also performed consulting for Elastic deployments and threat hunting inside the Elastic Stack.

In August 2019, Perched was acquired by Elastic and it's been an awesome journey ever since!

Harris Corporation

Dec 2011 - Sep 2016


My life prior to full-time military and security operations had me down a different path. Honestly, I'm suprised you are still reading at this point, but thanks for sticking with me!

At Harris I began my programming background working with a team developing a Java application delivering live geo-spatial visualizations of military assets. This application also gave me the opportunity to develop visualizations for the SOCOM Wargame Center and drive the system (a 20'x32' 3D floor display) for International and US Cabinet-level events.