Summary
Charles Pfaff is a seasoned cyber defense leader with over two decades of hands-on security experience and more than a decade leading incident response, detection, and red team functions at General Motors. He specializes in bridging offensive and defensive operations—building detection engineering, adversary emulation, and enterprise-scale incident response programs that span host, network, and cloud telemetry. Charles has a proven track record of founding tooling and processes from the ground up, from custom Suricata/Sguil sensors and Linux live-response frameworks to API-driven workflows and phishing detection platforms. He pairs technical depth in forensics, threat hunting, and detection rule development with people leadership, sustaining cross-company collaboration and metrics-driven improvement. An active practitioner of MITRE ATT&CK and NIST models, he uniquely combines red-team tradecraft with detection validation to close gaps rather than just identify them. Based in Rochester, Michigan, he brings a pragmatic, builder mentality rooted in early-career network architecture and long-term operational ownership.
12 years of coding experience
B.S., B.S. at Michigan State University