RT-2021 Today’s red team isn’t enough

Presented at Texas Cyber Summit 2019, Oct. 12, 2019, 3:30 p.m. (60 minutes).

Today’s red team isn’t enough. Because we want to move our defense and understanding beyond a detection-based approach which has repeatedly been demonstrated to fail. How do we emulate an adversary? We will go through multiple considerations of the entire red team lifecycle including walking through open source toolsets. We will talk through in detail specific host and network activities for emulation. And, we will conclude with how we can work on these activities towards a purple team approach.


Presenters:

  • Daniel LaVoie - Scythe inc
    Dan is SCYTHE's VP of Operations, where he leads the facilitation of sales, partnerships, alliances, and customer success departments. Prior to SCYTHE, Dan designed and managed the development and delivery of enterprise-class automated malware analysis and file triage capabilities in both the commercial and Federal space. ‍ Dan brings with him 18 years experience across a diverse technical background, spanning from Electronic Warfare system engineering, Red Team and GRC operations, Federal cyber operations mission and weapon system consulting, and as an advisor for federal information sharing initiatives. He is a Certified Information System Security Professional, and is an active member in numerous malware analysis and cyber defense working groups. Dan is a regular attendee and participant at cybersecurity conferences domestically, having most recently presented at RSA 2017 on lessons learned and paths forward regarding information sharing systems and processes across federal agencies and the defense industrial base

Links:

Similar Presentations: