Red Team

My Friday Thought: A great 'Red Team' consists of multiple skills and professions to ensure any many angles as possible are considered.

When I think Red Team, I can't help but see the image of Die Hard and the firesale and the principles of the movie are somewhat true. A goal-oriented (often multiple pronged) attack to test an organisations holistic security position.

For me, it isn't just about secuitry, it is also about how an organisation, team, service responses to an event which is why great tests are often embedded into a chaos simulated event. This is why it is important to have more than just secuitry as the focus, we should be testing how we respond to secuitry incidents and potential breaches, but that is not the only place we can potentially be weak.

The idea is to find the holes and remove them before they can be used, but a hole can be in the time it takes to discover an issue, how the lines of communication flow, who can fix and respond....the list goes on. Having a multi-skilled team, ensures that all these angles can be considered and overall makes for a more insightful outcome.

Plus, who doesn't love trying to burn it all down ;-)