Red Teaming

Red Teaming presents a security organization with a real world, objective and tangible assessment of their security system.

Based on government methodology, there are 2 primary categories of audits/tests that are typically conducted:

Wildcard Test/Audit
This audit takes place when the client wants to check if there are security vulnerabilities without specifying exactly what they want tested. In this instance, the testing team will identify and manipulate vulnerabilities at their discretion.

Objective Specific Test/Audit
This audit is most effective and is defined by what the client wants tested.

There are several categories of what can be tested, these include but are not limited to:

• Physical measures

• Technological measures

• Preventative and/or emergency procedures

• Instruction/Education (Preparedness)

• Intelligence accuracy and effective dissemination

• Manpower

• Cyber and Data Protection

Using a broad spectrum of “auditors”, from “laymen” to former government agents, we partner with the client to ensure that exactly what they require testing, is tested.

As with everything we do safety is of prime importance and is considered at every stage of the preparation and execution of the test. Our process is conducted exactly as a hostile act would be, including planning, where relevant, pre-attack intel collection, rehearsal, execution and of course debrief. Often, we are asked to partner with our client to strengthen against discovered vulnerabilities (if any), and conduct follow up testing to ensure fixes have been implemented.