Prism Infosec has recently introduced a groundbreaking testing service, known as PULSE, aimed at assisting organizations that may not have the capacity or resources for a full-scale red team exercise to evaluate their defense capabilities against real-world threats.
The gap between penetration testing and red teaming, which currently exists, can hinder organizations from obtaining a precise understanding of their security posture. PULSE aims to address this disparity by offering an agile alternative that employs an intensive testing approach.
While penetration tests focus on evaluating specific vulnerabilities within designated systems, red teaming involves a real-world assessment of an organization’s defenses against threat actor activities. PULSE is designed to bridge the gap between these two approaches by utilizing threat actor simulation techniques.
During the five-day testing period, PULSE evaluates an organization’s perimeter, endpoint security, and overall environment from the perspective of an opportunistic threat actor. The tests, conducted using techniques aligned with the MITRE ATT&CK framework, are flexible, repeatable, and measurable.
Ideal for organizations that have invested in security tools but lack a dedicated Security Operations Centre (SOC) and staff, PULSE tests ensure minimal disruption while subjecting systems to rigorous assault.
David Viola, Head of Red Team at Prism Infosec, highlighted the value of PULSE in allowing organizations to test their systems in a real-world scenario without the extensive commitment and disruption associated with traditional red team engagements. The approach taken in PULSE tests mirrors the tactics of cyber threat actors seeking to breach systems within a typical workweek.
The PULSE methodology involves various steps, including scoping, test planning, preparation, perimeter assessment, attack surface assessment, environment assessment, and reporting. These steps aim to uncover vulnerabilities and provide recommendations to enhance the organization’s security posture.
Moreover, PULSE can be tailored to include specific testing based on the customer’s environment, such as physical testing using social engineering and breach techniques. Phil Robinson, CEO of Prism Infosec, expressed excitement about the impact PULSE will have on clients and emphasized the company’s commitment to enhancing technical capabilities.
PULSE represents the first of several agile red team services offered by Prism Infosec as part of their strategic initiative to enhance red team service offerings. Future plans include a revamped Purple Teaming service and an integrated Incident Response (IR) and Red Team service.
Overall, Prism Infosec’s PULSE testing service serves as a vital tool for organizations to assess their defense capabilities against evolving cyber threats in a practical and efficient manner, ultimately strengthening their overall security posture.