FireEye Launches Purple Team Assessments to Test Security Operations With Mandiant Experts
October 09 2019 - 8:00AM
Business Wire
Purple Team and Continuous Purple Team
Assessments enable organizations to quantifiably evaluate security
controls and programs against Verodin simulated attack
scenarios
FireEye Cyber Defense Summit - FireEye, Inc. (NASDAQ:
FEYE), the intelligence-led security company, today announced the
availability of two new FireEye® Mandiant® services. With Purple
Team and Continuous Purple Team Assessments, organizations can now
work closely with FireEye Mandiant incident response experts to
quantifiably evaluate their security programs against Verodin®
simulated attack scenarios.
“Many organizations do not test the efficacy of their security
controls and program thoroughly or often enough. Without
validation, security teams may base decisions on assumptions rather
than evidence, which can instill false confidence in their ability
to detect and respond to a security breach,” said Charles Carmakal,
CTO of FireEye Mandiant consulting. “FireEye Mandiant Purple Team
Assessments combine the best practices from offense and defense so
that the organization can quantifiably test and measure their
security effectiveness and improve their overall risk posture.”
Red teams simulate attacks and blue teams defend against
attacks. Purple team assessments are a collaborative effort among
the red and blue teams. Mandiant experts function as the red team
and augment an organization’s blue team.
“Our experience with FireEye's Purple Team service offering has
been phenomenal. Working hand-in-hand with the Blue Team to detect
the different TTPs, helps solidify and uncover new investigative
and monitoring methods. In addition to addressing gaps in
controls or with use-cases, the engagement serves as a sort of
live-fire exercise where analysts can hone their skills. Analysts
also learn how to investigate and respond to newer techniques
previously unseen or encountered,” said the Senior Information
Security Engineer at a Fortune 500 healthcare company.
Purple Team Assessments
With Purple Team Assessments, Mandiant experts guide an
organization’s security team through highly-realistic attack
scenarios. To simulate the attacks, Mandiant will create scenarios
within the FireEye Verodin Security Instrumentation Platform (SIP).
The scenarios are based on analysis from the latest data breaches
and the most current intelligence regarding industry-relevant
threat groups. With that methodology, Mandiant can emulate the
tools, tactics, and procedures (TTPs) of hundreds of attackers and
simulate any component of the MITRE ATT&CK framework.
Throughout the assessment, the organization receives a detailed
scorecard that quantifiably identifies where security operations
are thriving, areas of improvement, and strategic recommendations
to strengthen the security posture.
Continuous Purple Team Assessments Deliver Prolonged
Refinement
Mandiant also offers Continuous Purple Team Assessments. Over a
prolonged period of 3 - 6 months, an organization’s security team
can train and enhance its detection and response capabilities while
Mandiant experts use the Verodin platform to execute attacker TTPs.
During this hands-on exercise, the security team will engage in
periodic re-testing and evaluation to measure and continually
refine its capabilities. Mandiant experts will track the
progression of the security team’s detection and response
capabilities from the start of the engagement to the end, providing
quantifiable scorecards along the way to measure the team’s
effectiveness. Not only does this practice assess the impact of
ongoing changes to people, processes and technology within a
security program, it also demonstrates the ROI of the
organization’s security spending.
Carmakal concluded, “By integrating the Verodin platform with
frontline threat intelligence, we are able to quantify
organizations’ security effectiveness in a new and comprehensive
way. Purple Team Assessments are just the beginning of how we plan
to integrate Verodin into our wider services portfolio.”
For more information about FireEye Mandiant Purple Team
Assessments, including the FireEye Verodin Security Instrumentation
Platform (SIP), please visit
https://www.fireeye.com/services/purple-team-assessment.html
About FireEye, Inc.
FireEye is the intelligence-led security company. Working as a
seamless, scalable extension of customer security operations,
FireEye offers a single platform that blends innovative security
technologies, nation-state grade threat intelligence, and
world-renowned Mandiant® consulting. With this approach, FireEye
eliminates the complexity and burden of cyber security for
organizations struggling to prepare for, prevent, and respond to
cyber-attacks. FireEye has over 8,200 customers across 103
countries, including more than 50 percent of the Forbes Global
2000.
© 2019 FireEye, Inc. All rights reserved. FireEye, Mandiant and
Verodin are registered trademarks or trademarks of FireEye, Inc. in
the United States and other countries. All other brands, products,
or service names are or may be trademarks or service marks of their
respective owners.
View source
version on businesswire.com: https://www.businesswire.com/news/home/20191009005062/en/
Media Inquiries: Media.Relations@FireEye.com
Investor Inquiries: Investor.Relations@FireEye.com
FireEye (NASDAQ:FEYE)
Historical Stock Chart
From Aug 2024 to Sep 2024
FireEye (NASDAQ:FEYE)
Historical Stock Chart
From Sep 2023 to Sep 2024