White team
Affected actors shall establish a White Team responsible for coordinating all activities related to the test
TIBER
In recent years, cyber threats have emerged as one of the biggest risks to financial stability. To address this growing threat, the ECB issued the TIBER-EU (Threat Intelligence-Based Ethical Red Teaming) framework in 2018. The framework is designed to improve resistance to cyberattacks within the financial sector by exposing organisations to realistic attacks – so-called Red Team Testing – and use these to learn about what works and what needs improvement.
requirements
Affected actors shall establish a White Team responsible for coordinating all activities related to the test
Affected actors shall establish a Blue Team to defend the organisation and learn from the test results
Affected actors shall engage third-party providers for Threat Intelligence and Red Teaming to attack the organisation and identify deficiencies and vulnerabilities
Actors affected by TIBER-SE are responsible for managing and organising their own testing, and ensuring that it complies with the framework
Solutions
Our specialist group within Red Team Testing simulate actual attacks that identify gaps in the technology and procedures within the entire company. The attacks are designed according to scenarios that are based on actual attacks, but they are adjusted as well based on the threats and risks that your unique organisation faces.
In contrast to RedSOC, BlueSOC is tasked with proactively and reactively defending the organisation against attacks. In our BlueSOC, security analysts work to monitor our customers' networks and traffic to detect and respond to suspicious activity, 24 hours a day, all year round.
Our unique RedSOC service is designed to meet the world as it really exists. By allowing our ethical hackers to continuously simulate attacks on your business, we help you increase your organisation's security level step by step, so you can always answer the question "are we vulnerable" and if so, "how?".
Combining RedSOC and BlueSOC creates several advantages from a security perspective. In addition to the ability to continuously test the resilience of the organisation, RedSOC also contributes to BlueSOC's development. By testing different attack surfaces, RedSOC can provide BlueTeam with information about possible gaps and shortcomings in detection. This information can be used to produce e.g. new use cases, which help to strengthen BlueSOC's detection capabilities and provide more tailored protection for you as a customer.
Read moreVi erbjuder flera kontaktvägar och återkopplar så snart som möjligt. Har du känslig information ber vi dig att maila krypterat.
08-545 333 00
Vi svarar dygnet runt
info@sentor.se
För generella förfrågningar
soc@sentor.se
Använd vår PGP-nyckel