Opening Keynote – Cyber Assurance – Testing for Success
How do you know your investments in security controls are effective? Many traditional Red Team exercises and Penetration Tests provide a valuable service by exposing your weaknesses; however, they suffer a number of shortfalls. First, they are often point in time exercises that do not provide comprehensive controls testing. Second, Red and Blue team objectives are seldom aligned to “get better together” and therefore, little if any collaboration, learning, or improvement takes place. The speaker will discuss the current status of enterprise security programs and different testing approaches and new technologies to facilitate meaningful security posture improvements. After all, isn’t the overall objective of testing to not only test, but improve the effectiveness of your security investments?