Red Teaming is currently the closest most companies get to adversary emulation. While Red Teaming can do a good job pointing out security gaps, blind spots, and human weaknesses within an organization, there are also limitations. Engagement SOW’s, timelines, and laws impose limitations which can unwittingly push a Red Team engagement far from adversary emulation. Some thoughts on the current status quo, and ways to mix it up.

Sam has served in the State Department's Foreign Service as a security engineer who worked on threat hunting and red teaming. He is currently a proactive consultant for Mandiant.

@penetrate_io

Back to Derbycon 2018 video list