Exercise Types
Team exercises are similar to pen testing, but they use friendly IT professionals to participate in the different teams. The teams are red, blue, green, white, and purple. Let's look at each of these in turn:
Here is a brief overview of the different teams:
- Red Team: The red team mimics an attacker, and they try to find vulnerabilities within your company. They quite often use social engineering and phishing as part of their attacks.
- Blue Team: The blue team looks to discover security vulnerabilities within the company and take action to mitigate them so that the company is secure.
- White Team: The white team organizes and adjudicates cybersecurity exercises based on the information given. They set the rules of engagement and details of the exercise. If they find that the red team has created a serious vulnerability, they will stop the exercise immediately. They score the blue team&apos...