Have a Question?

What is White Teaming?

You are here:
< All Topics

White teaming is a series of cyber security exercises whereby the white team is responsible for refereeing an engagement between a Red Team (attackers) and a Blue Team (defenders) in an enterprise set up with information and systems. The white team acts as a judge by enforcing rules during the exercise and scoring the other groups. Besides, the team ensures that the activities of Red and Blue Teams run fairly without causing operational problems. The group has prior knowledge of unannounced Red Team missions and acts as observers during the exercise to maintain the defined testing threshold. Finally, the White Team derives lesson-learned, conducts post engagement assessment, and documents and shares the results, often feeding in to the development of the Incident Response Plan and Security Strategy.  Testing your security teams and processes regularly is something that all organisations should be investing in in the face of todays evolving threat landscape.  This is not something that an organisation should be doing alone, gaining an outside perspective in these processes brings so much additional insight and value to the process and also to how your organisation responds and evolves its security position.  

If you would like to learn more about how CyberScale can support you in developing your Incident Response testing contact us today.

Was this article helpful?
4.5 out of 5 stars

1 rating

5 Stars 0%
4 Stars 100%
3 Stars 0%
2 Stars 0%
1 Stars 0%
5
How can we improve this article?
Please submit the reason for your vote so that we can improve the article.