Enterprise Purple Team

A robust Purple Team exercise emulating threat actor techniques and covering a broad span of MITRE ATT&CK tactics to put your defenses to the test, and most importantly, develop a roadmap for world-class detection.

Enterprise Purple Team Overview

Our most resource-intensive model, the Enterprise Purple Team will will result in a thorough look at how your defenses hold up across the entire MITRE ATT&CK framework in their current state, and offer you a roadmap for future improvement. We will assess:

  • Early indicators of compromise
  • Account abuse
  • Spear phishing technical defenses
  • Malware detection and response
  • Network Isolation, lateral movement, and protected resources breach
  • C2 and data exfiltration
Cloud Security

Deliverables

SRA will provide the following reports after performing the Cloud Purple Team exercise:

  • Summary Report with Defense Success Metrics Dashboard and Industry Benchmark
  • “Quick Wins” list of improvements that your team can begin right away to improve your Defensive Success
  • Strategic recommendations to improve your detection capabilities

Details

Prep:

  • We will guide your installation and configuration of the free VECTR™ tool. We will show you how to use VECTR™ to document, score and report.

Timing

  • 10 days