Director of Security Operations – Retail

“We can produce a realistic attack, validate where controls are successful at detecting or preventing it, identify places where controls aren’t working, make sure the SOC and other teams are responding appropriately, and then make improvements where the tests indicate they’re needed. Bringing all those activities together into the same process is, in my opinion, the definition of Tier 1 purple teaming. I think we should focus more on being a purple team than either red or blue, and AttackIQ has been solving that problem for us from the outset.”