So you have a SIEM. Sentinel, Splunk, QRadar, Datadog. Securonix… you name it. Also, #fingerscrossed, you didn’t get that capability only as a checkbox exercise to meet compliance needs. If you did this post is probably irrelevant so please ignore. Else keep reading. How do you #evidence your security controls actually detect and prevent what they’re supposed to? Also when was the last time you had a #practical world class #expert level audit of your #detection capabilities covering how #efficiently your SOC operates and includes actionable results leaving you with more than a checklist of what you need to fix? Moreover how do you foster collaboration during an audit leaving your integral defence team #educated, #empowered and not belittled after such an engagement? If not recently or at all or you were not aware detection on its own doesn’t mean much if it is not #risk driven then #purpleteaming is a service you need to assess for your organisation or add to your toolkit.
Do your security controls actually detect and prevent what they’re supposed to? Our Purple Team Assessment Service can help answer that question. Learn more ➡️ https://ghst.ly/3F01zI1
