Red teaming exercises help organisations to improve their security posture by using adversarial techniques to pinpoint weaknesses.
While this is better than doing nothing or relying blindly on the security of cloud providers, those externalised, part-time services – often delivered remotely – are rarely the magic bullet they pretend to be…
The ability to infiltrate networks and remain undetected is a key capability for attackers to gain access to systems, hence the need for threat hunting.
It does not make sense to oppose maturity-based approaches and risk-based approaches to cyber security: They are just different ways of managing, driving and measuring action around cyber security in different situations and different firms. One does not have to be superior to the other.
Once, managed security services were somewhat limited in nature, managing such tools on behalf of customers. MDR services shift that paradigm.
In the latest of Fran Howarth’s blogs on managed detection and response services, she looks at telemetry, which she feels is a vital ingredient to MDR.