To combat future threats, many security operation centers (SOCs) perform simulations to test their capabilities against attacks. However, many attack simulations are conducted from a purely offensive “red team” perspective, using only a handful of attack techniques.
As the red team, Cisco Talos Incident Response (Talos IR) will conduct various controlled attacks against your systems and services. They will constantly communicate with your blue team about what they find, and what should (and shouldn’t) be in your logs. Sitting side by side with your defenders will be our own Talos Incident Response blue team, helping to guide your detection and remediation every step of the way.
Our global team of incident responders is vendor agnostic, which means that in the heat of the moment, we won’t ask you to perform any software deployment before we can get to work on handling the incident. Talos IR uses your existing tools and security investments to immediately respond to adversary activities. If anything is missing, we can provide full access to Cisco’s tool suite.
A Purple Team exercise is a collaborative approach between offensive (Red) teams and defensive (Blue) teams.
Read MoreWhen you partner with Talos IR experts, you ensure your organization takes full advantage of Cisco’s world-class security knowledge and experience. We will work closely with you to become a trusted advisor and partner – helping ensure you have access to information and insights you need to be prepared for what’s now and what’s next.
For questions regarding our Talos IR retainer subscription or to sign up: