Benji Vesterby

I fell in love with computers early—building PCs, teaching myself to code, and chasing distributed systems, AI, and security. In 2017 I discovered Go at SANS and joined my first GopherCon a year later. The community’s pragmatism shaped my approach: ship real code, measure outcomes, share what works. Today I help run the GopherCon CTF, training 160+ engineers a year.

Professionally, I’ve spent 18+ years building and securing robust, scalable systems—pioneering security automation, OT/ICS deep packet inspection, and runtime AppSec. My work is measured in deltas: +65% IDPS precision, major FP reduction, and −95% MTTR.

At CodePros, I lead an automation‑first OT/ICS & detections studio (Go‑first). We ship productized offers—OT/ICS DPI Accelerator, IDPS Effectiveness Boost, Security Automation Jumpstart, Protective DNS Assessment / Deployment, and Runtime AppSec Enablement—through Labs→POC→Prod or Build‑Transfer‑Operate. We prove impact with precision/recall, FP rate, Gbps & CPU/GB, MTTR, and POC→Prod conversion.

I also serve as Principal Security Engineer at QuantumScape, focusing on automation, detection engineering, and incident response.

Outside of work: photographer, PADI‑certified SCUBA diver, and relentless bread‑baker chasing the perfect sourdough.

Skills & Expertise

Core Expertise

OT/ICS DPI & Telemetry Detection Engineering & IDPS Tuning Security Automation (email/asset/vuln/IR) Runtime AppSec (RASP/IAST, Go‑first) Protective DNS (DoH/DoT) DevSecOps & Secure SDLC Cloud Security & Platform Engineering Incident Response & Forensics (incl. SIM‑swap)

Specializations

Modbus/DNP3 protocol parsing Zeek/Suricata content engineering eBPF/XDP data‑plane telemetry QUIC/TLS 1.3 visibility strategies Sigma/KQL detections & golden telemetry SBOM/VEX operations & signing (Sigstore/Cosign) Build‑Transfer‑Operate delivery Marketplace private offers (AWS/Azure/GCP)

Technical Skills

Go (Golang) Zig Python TypeScript JavaScript C# Zeek Suricata eBPF/XDP Sigma/KQL Kubernetes Terraform Docker AWS/GCP/Azure PostgreSQL (RDS/Aurora)

Certifications

GIAC Certified Incident Handler (GCIH) Stanford Advanced Computer Security Certificate

Professional Experience

Principal Security Engineer

QuantumScape Battery

Aug 2023 – Present

Lead security automation, detection engineering, and incident response; awarded 2024 Presidential Equity Award for automation excellence.

Founder & Principal Security Engineer

CodePros

Apr 2023 – Present

Run an automation‑first OT/ICS & detections studio (Go‑first). Productized offers: OT/ICS DPI Accelerator, IDPS Effectiveness Boost, Security Automation Jumpstart, PDNS Assessment, Runtime AppSec Enablement. Leads Build‑Transfer‑Operate delivery, OEM/MSSP partnerships, and GopherCon CTF training (160+ engineers/year).

Principal Software Engineer

SynSaber

Apr 2022 – June 2023

Built ICS/OT deep packet inspection and distributed edge telemetry for industrial networks.

Principal Software Engineer

Contrast Security

Jan 2020 – Apr 2022

Developed multi‑language RASP/IAST agents and CI integration with performance‑budget profiling.

Manager, Information Security

NortonLifeLock

Jul 2018 – Jan 2020

Scaled vulnerability management automation from 360k to 1.2M+ assets; measurable MTTR and FP improvements.

Skills & Expertise

Core Expertise

Specializations

Technical Skills

Certifications

Professional Experience

Principal Security Engineer

QuantumScape Battery

Founder & Principal Security Engineer

CodePros

Principal Software Engineer

SynSaber

Principal Software Engineer

Contrast Security

Manager, Information Security

NortonLifeLock

Senior Software Engineer

Symantec

Education

Bachelor of Science in Computer Science

University of Illinois Springfield

Advanced Computer Security Certificate

Stanford University

Notable Projects

GopherCon CTF Organizer & Trainer (2023–Present)

Recent Posts

All Posts by Benji Vesterby