David Branscome
David is a Global Partner Solutions Architect for Security, Compliance and Identity at Microsoft. In this role, David is responsible for training and supporting Microsoft partners on the latest security compliance and identity solutions, including Microsoft 365, Azure and Windows.
David has been with Microsoft for 17+ years in a variety of roles, from Microsoft Consulting Services to Premier Field Engineer and most recently in the partner support organization.
David is a certification junkie and holds numerous security certifications, including14 GIAC certs, CISSP, and MCT.
Because of this passion, David speaks at dozens of partner events, internal Microsoft training events and 3rd party security events worldwide every year.
He has been married for 34 years, has 4 children (3 boys and a girl) and 2 golden retrievers – all of which keep him very busy!
X/Twitter
@branscome_david
Session
Volt Typhoon is a state-sponsored threat actor that infiltrated U.S. telecom infrastructure using stealthy, malware-free techniques - living off the land with legitimate credentials and built-in tools. This session unpacks how the group maintained undetected access for years, bypassed traditional defenses, and positioned themselves for potential sabotage. We’ll dissect their tactics, from credential theft and lateral movement to covert exfiltration and persistence via hijacked SOHO routers. Attendees will gain actionable insights into detecting and defending against these advanced, low-noise intrusions. If your SOC relies on alerts alone, this is the wake-up call you can’t afford to miss.