EXPERIENCE
Jeff Pergal has 30+ years of experience in IT and security, from startups to Fortune 500 organizations.
Jeff is a security consultant with more than 15 years of experience in the Information Security field. He most recently developed and matured a large team of security technologists at a Fortune 500 company responsible for adversarial simulation, threat hunting, detection engineering, deception technologies, and threat intelligence. Jeff and his teams pioneered approaches to decreasing active threat resolution from multiple days to a 15-minute average resolution time.
EDUCATION & CERTIFICATIONS
- Bachelor of Science in Business Administration, Marketing, with a concentration in Information Systems, Valparaiso University
- Certified Information Systems Security Professional (CISSP)
- AWS Certified Cloud Practitioner (AWS CCP)
PROFESSIONAL AFFILIATIONS
- Adjunct Instructor, Madison College, IT and security areas for over 20 years
- Speaker at various security and technology-focused national conferenceshttps://security-storm.com[GF1]
- Member of InfraGard
PASSION FOR SECURITY
Jeff is on a quest to help organizations of all sizes improve their security posture, foster security cultures, and build strong, high-functioning teams. He also has a deep understanding of and empathy for the complexity of balancing priorities, resources, budgets, and other obstacles that sometimes make these things a challenge for many organizations.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
BEC Basics: Your First Step to Thwarting Email Scams
Attackers never stop evolving their business email compromise (BEC) tactics, leveraging phishing, credential harvesting, and email spoofing to infiltrate…
Actionable Purple Team Simulation Online Training (November 7-8)
Learn how to create specific detections to identify early Indicators of Compromise (IOCs) in our online course. Designed for those looking to improve their…
Ask Me Anything: Advanced Cloud Pen Testing Scenarios
Cloud Penetration Tests are a critical component of cloud security, but integrating other testing methods can take the assessment to the next level. Adding…
Security Noise - Episode 7.4
Who's On My Network?
Spec-tac-ula Deserialization: Deploying Specula with .NET
Earlier this year, I gave a talk at Steelcon on .NET deserialization and how it can be used for Red Team ops. That talk focused on the theory of .NET…
Calculating Business Impact
In today’s digital landscape, gaining a deep understanding of how cybersecurity threats can affect business-critical systems is crucial for maintaining…
Let’s Clone a Cloner - Part 2: You Have No Power Here
Previously on Let's Clone a Cloner, I needed a long-range RFID badge cloner. There are many walkthroughs out there on how to build a cloner that are fantastic,…
Wild West Hackin' Fest 2024
TrustedSec is happy to return as a sponsor for Wild West Hackin' Fest in 2024! Visit us at our booth at the Deadwood Mountain Grand. Principal Security…
Miami Herald - Why are pro-Trump posts popping on a Haitian-American Facebook page? It’s been hacked
A Haitian-American Facebook page with nearly 500k followers was hacked using a sophisticated phishing scam which began with an invitation to a podcast…
EKUwu: Not just another AD CS ESC
TL;DR - Using built-in default version 1 certificate templates, an attacker can craft a CSR to include application policies that are preferred over the…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
