InfoconDB

Presented at Hackfest 2016, Nov. 5, 2016, 3:30 p.m. (Unknown duration)

Too many times do I hear the tales of PenTesters and "Red Teamers" awesomeness but never hear of the fight the "Blue Teamers" put up. Let's face it, the value of most PenTesting is as good as being pushed down a flight of stairs then being told you are vulnerable to a "Sneak Attack Stair Renegotiation Vulnerability" or known in the media as SASR. In this talk I will explore what it is like to build, manage and operate a red team that is a VALUE to the organization not just a gang of PenTesters pointing out flaws. We will cover numerous engagements and 1000's of simulation hours that show a clear and repeatable method to measure the success of a program. We will cover the setup and goals of the team, integration into the overall ecosystem of the company and the tricky metrics that actually let you answer the fabled question "How secure are we?"

Presenters:

Chris Nickerson
Chris Nickerson, CEO of LARES, is an 18+ yr veteran of the Cyber Security industry. His main area of expertise is focused on real world Attack Modeling, Red Team testing and Adversarial Simulation. Mr Nickerson has held Sr. positions at Arrow Electronics, KPMG, and Sprint providing security testing and recommendations to corporations worldwide. Having spoken at most major Information Security conference in the world and is a TED speaker alumni. He is the featured member of the TrueTv series "Tiger Team" and author of the upcoming Red Team Testing book published by Elsevier.

Adversarial Simulation: Why your defenders are the Fighter Pilots.

Presenters:

Links:

Similar Presentations: