In the past, nonmalicious hackers who found and exploited an organization’s weaknesses and notified it of those weaknesses often faced severe penalties, including jail time. But now, this testing activity is a vital element of cybersecurity. Red team testing can help organizations find their biggest vulnerabilities and fortify the security around them. Despite becoming a crucial component of cybersecurity, the skills gap has resulted in a shortage of qualified red team personnel.
In the recent ISACA Podcast episode “Using Red Teaming to Improve Your Security,” Frank Downs, ISACA’s senior director, cybersecurity advisory and assessment solutions, and Dustin Brewer, principle futurist at ISACA, discuss the origins of the red team and why red teams and blue teams need to have a better understanding of each other’s functions. The podcast also explores some causes of the skills shortage and how those considering a career in cybersecurity can determine if it will be a good fit.
The ISACA Podcast can be streamed on the ISACA Podcast page of the ISACA website, or you can subscribe to it on Apple Podcasts, Google Play, PodBean, Spotify or Stitcher. If you would like to provide feedback on the ISACA Podcast, please fill out this brief survey to let ISACA know how the podcast can be improved.