“Everyone working in IT has a responsibility to build, operate, and maintain their systems in a secure manner.”

Twitter: @jbizzle703 • Website: www.linkedin.com/in/john-breth-730b7755 and www.youtube.com/channel/UCmJJUewPWfnyzvZRrFHlykA

John Breth is the founder/managing principal of JBC (jbcsec.com) and is an experienced architect and author with 17 years' experience helping the nation's federal agencies, defense and intelligence agencies, and critical infrastructure companies identify, implement, and protect against cyber threats. John has designed and implemented mission-critical systems to support a Tier 1 ISP's cyber protections for the federal government, numerous DoD joint networks, and Air Force One's secure network. John has earned multiple high-level certifications from (ISC)², Cisco, and CompTIA, as well as having earned an MS degree with a focus on information technology from Johns Hopkins University.

How do you define a blue team?

There are two answers here, with one that is the generally accepted answer that we use when trying to conceptualize things for management, especially when dealing with funding and resources. That's the default blue team definition of a team of people (or defenders if you come from a DoD background) who monitor and respond to potential incidents.

My more holistic answer is that everyone working in IT has a responsibility to ...