EXPERIENCE
Jeff Pergal has 30+ years of experience in IT and security, from startups to Fortune 500 organizations.
Jeff is a security consultant with more than 15 years of experience in the Information Security field. He most recently developed and matured a large team of security technologists at a Fortune 500 company responsible for adversarial simulation, threat hunting, detection engineering, deception technologies, and threat intelligence. Jeff and his teams pioneered approaches to decreasing active threat resolution from multiple days to a 15-minute average resolution time.
EDUCATION & CERTIFICATIONS
- Bachelor of Science in Business Administration, Marketing, with a concentration in Information Systems, Valparaiso University
- Certified Information Systems Security Professional (CISSP)
- AWS Certified Cloud Practitioner (AWS CCP)
PROFESSIONAL AFFILIATIONS
- Adjunct Instructor, Madison College, IT and security areas for over 20 years
- Speaker at various security and technology-focused national conferenceshttps://security-storm.com[GF1]
- Member of InfraGard
PASSION FOR SECURITY
Jeff is on a quest to help organizations of all sizes improve their security posture, foster security cultures, and build strong, high-functioning teams. He also has a deep understanding of and empathy for the complexity of balancing priorities, resources, budgets, and other obstacles that sometimes make these things a challenge for many organizations.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
CactusCon 2025
TrustedSec is proud to sponsor and have a booth at CactusCon this year! Three of our consultants will be giving talks as well.
2024 Conference Roundup
Join our panelists David Kennedy, Justin Elze, Jason Lang, and Oddvar Moe for their firsthand accounts and perspectives on what people were talking about at…
The Hidden Trap in the PCI DSS SAQ A Changes
The Payment Card Industry Security Standards Council (PCI SSC) just announced a change to Self Assessment Questionnaire A (SAQ A). The change eliminates two…
Security Noise - Episode 7.10
Authentication in 2025
Operating Inside the Interpreted: Offensive Python
IntroductionEvery once in a while, I get the urge to go back and revisit older techniques that used to be popular but have fallen out of favor with the…
TrustedSec Tech Brief - January 2025
Carlos Perez walks us through several major vulnerabilities and patches from early January 2025, including a critical Fortinet FortiGate zero-day vulnerability.
Security Noise - Episode 7.9
On this episode of the Security Noise Podcast, we discuss user enumeration on Azure and "presence data" in Microsoft Teams with nyxgeek.
DOD Contract Compliance: DFARS 7012 and CMMC
Advisory Compliance Practice Lead Chris Camejo will take a deep dive into the Department of Defense requirements for protecting FCI and CUI.
Command Line Underdog: WMIC in Action
My typical engagements are mostly Red Teams, so I do not often get a chance to play with terminal server application breakouts—but on a recent engagement, I…
Solving NIST Password Complexities: Guidance From a GRC Perspective
Not another password change! Isn’t one (1) extra-long password enough? As a former Incident Response, Identity and Access Control, and Education and Awareness…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
