Identify security gaps with testing
‘Purple team testing’ brings defenders and attackers together.
Certain testing exercises can enable credit unions to gauge their internal controls, and find and fill their security gaps, according to two security experts.
Peter Misurek, information security engineer at Royal Credit Union in Eau Claire, Wis., and Dave Rebman, cybersecurity engineer at Alliant Credit Union in Chicago, addressed the CUNA Technology Council’s 6th Annual Security Summit Tuesday in Chicago.
They cited three types of testing exercises credit unions can employ to identify security gaps:
1. Blue team testing, where internal security personnel must react to simulated security attacks to provide insights into the credit union’s defensive capabilities.
continue reading »