As few as 9% of businesses run inward directed attacks that emulate real word adversaries or simulate major failures in IT. Red teams simulate the bad guys. They launch physical, social and digital attacks that mimic the behaviour of threat actors. They can test the effectiveness of your cyber defence team as well as your outsource service providers, and spot where you are wasting money on stuff that doesnt work. They identify training, technology and process fixes to enhance security. They guide investment and prevent money being wasted. Above all, they inform risk management with ground truth.”]
Source: https://grahamcluley.com/xqdigitalresilience-sponsor/