Share these talks and lectures with your colleagues
Invite colleaguesPractice paper
Red Team testing: Essential KPIs and metrics
Cyber Security: A Peer-Reviewed Journal,
7
(4),
323-332
(2024)
Abstract
This paper first discusses the diverse types of Red Team engagements and established exercise and attack frameworks and the importance of documented rules of engagement, then details the difference between metrics and key performance indicators (KPIs), and finally identifies the essential data points to be captured and compared in your next Red Team Test.
Keywords: Red Team testing; Blue Team testing; Purple Team testing; TTP; exercise framework; attack framework; rules of engagement; KPI; metric
The full article is available to subscribers to the journal.
Author's Biography
Richard Hollis is the Chief Executive Officer (CEO) for Risk Crew, a product-agnostic information security risk management and cyber security testing consultancy headquartered in London. He possesses over 25 years of hands-on skills and experience in designing and delivering creative, cost-effective Red Team exercises to a wide variety of international enterprises across all sectors. Richard is a celebrated public speaker and seasoned trainer. He has presented to hundreds of audiences across the world on a wide variety of cyber risk management and testing topics and techniques. As a recognised industry authority, he has published numerous articles and white papers and appeared on national and international broadcast news shows as well as being cited in a wide range of press including the BBC, MSNBC, Radio 4, Financial Times, Time magazine and various others. He is also a regular contributor to industry podcasts and publications such as Wired, SC, InfoSec and Security Penetration Testing magazines.
