![]() ![]() Sometimes, you have to let them do it and learn the lesson and if the impacts are not big enough, it's just better that way. “Sometimes, you have to let somebody fail. Reactionary behavior hurts your team- and it wastes your time, too. Dan also recommends that practitioners stop and think about their reactions when collaborating together. ![]() Instead of the selfish “us vs them” mentality of the red and blue silo structure, a purple team unites everyone on the same team, under the same end goal. What are your key takeaways about collaboration from your experiences in purple team settings?Ĭollaboration, especially between red and blue teams, requires compromise and conscious thought. You can't be putting out fires every day, you're gonna burn out.” If you're doing incident response and detection, it's a marathon, not a sprint. “It's extremely important when bringing people in, they know there's going to be an exercise, so they don't think the world is on fire. Jumping into an engagement or a test without communication and cooperation between both sides doesn’t unify, it only divides and burns out practitioners. When there isn’t solid communication between red and blue, bad blood is easily bred and the tension of a high-pressure situation, such as an attack incident, becomes so much worse. In Dan’s experience, a huge purple team pet peeve is how red and blue teams hinder one another. What is one of your purple teaming pet peeves? PlexTrac, the Proactive Cybersecurity Management Platform, brings red and blue teams together for better collaboration and communication. The Axonius solution correlates asset data from existing solutions to provide an always up-to-date inventory, uncover gaps, and automate action - giving IT and security teams the confidence to control complexity. Thank you to our friends at Axonius and Plex Trac for sponsoring this episode! Failing as an opportunity for upward career mobility Writing a book that covers blue & red perspectives ![]() Deconflicting & blue team maturity ratings Understanding the trends of cyber practices & purple teaming Finding a purple team in the Target breach aftermath Pivoting from robotics to computer science to InfoSec In this episode, Daniel talks about the process of writing a book as a cyber practitioner and where he sees the gaps in purple teaming today. Collaboration is key in any purple team, and Dan believes collaboration comes from a place of knowledge and understanding- of ourselves, others, and the security tools we use every day. Daniel Borges, Senior Red Team Engineer at CrowdStrike and author of Adversarial Tradecraft in Cybersecurity, brings his unique perspectives on learning, training, and failure to the pod. ![]()
0 Comments
Leave a Reply. |