Douglas McKee

Douglas McKee is the Executive Director of Threat Research at SonicWall where he and his team focus on identifying, analyzing, and mitigating critical vulnerabilities through daily product content. He is also the lead author and instructor for SANS SEC568: Product Security Penetration Testing - Safeguarding Supply Chains and Managing Third-Party Risk. Doug is a regular speaker at industry conferences such as DEF CON, Blackhat, Hardware.IO and RSA, and in his career has provided software exploitation training to many audiences, including law enforcement. His research is regularly featured in publications with broad readership including Politico, Bleeping Computer, Security Boulevard, Venture Beat, CSO, Politico Morning eHealth, Tech Republic, and Axios.

More About Douglas


Douglas began his career working for the U.S. Department of Defense where he gained wide exposure to the security industry through his work on vulnerability research, penetration testing, reverse engineering, malware analysis and forensics tasking. He then went on to lead a highly skilled team focused on a wide spectrum of internal and external security assessments for Fortune 500 companies at a consulting firm Protiviti. Continuing to expand his leadership and technical skills, Douglas become the lead senior researcher for McAfee's Advanced Threat Research team eventually leading to his appointment as a Principal Engineer and the Director of Vulnerability Research when the company was rebranded to Trellix.

Douglas is a skilled speaker and teacher and throughout his career has provided software exploitation training to many audiences, including law enforcement. He is a regular at major industry conferences and holds many well-known industry certificates including the GREM, OSCP and GXPN. Douglas obtained his Master of Science in Information Security from East Stroudsburg.

Here is a presentation by Douglas:

Seek Out New Protocols, and Boldly Hack Undetected | HackFest 2023



Combating Supply Chain Attacks with Product Security Testing, SANS Webcast 2023

Fail Harder: Finding Critical 0-Days in Spite of Ourselves, Black Hat Europe 2022

Code Blue! Medical Devices Under Attack, RSAC 2022

Keynote - Trellix Advanced Research Center, Xpand Live 2022

HVACking Understand the Delta Between Security and Reality, DEF CON 27

80 to 0 in Under 5 Seconds, DEF CON 26

Inside Look @ The Threat Report: Summer 2022, Trellix YouTube Channel

Think Red, Act Blue - Hacking Proprietary Protocols, SANS Webcast 2021