Time to do some learning. There are things we can be doing better. Things we can be doing right. And with the help of two very good friends, Amanda Berlin and Lee Brotherston, we are going to batten down these hatches and secure the *&$@ out of our fortresses.
As stated in the Foreward, “the red teams get all the glory.” And it’s true. For blue teams it feels lonely and unappreciated, but there is so much truth in this:
“Doing defense is a vital, noble and worthwhile pursuit”
It’s easy to get turned around by hype. We follow the direction the noise is making, and tbh vendors make a lot of noise. What we need to do, and have known for so long, is not to be dazzled by the shiny, blinky boxes. As so well said by Andrew Kalat:
Security Vendors will often define the problem set as the problem they can solve with their technology, not necessarily the problem an organization actually has.
So here’s to taking a more holistic view, as this excellent guide advocates, and understanding how all the pieces need to work for this particular machine. We’ll share Chapter 1 next.