“Through organized log management, hardening techniques, and cybersecurity analysis coupled with threat intelligence, blue teams bolster the SecOps department's ability to improve security maturity while maintaining the integrity of business continuity.”
Justin Moss is a cybersecurity enthusiast who currently works as a sales engineer for the endpoint security company CrowdStrike. With a CompTIA Security+ certification as well as CrowdStrike's Proactive Hunting, Incidence Response, and Administration certifications, he's passionate about informing the industry on how to be proactive with their security tools. Justin stays proactive in his workplace by creating and delivering workshops that bridge the gaps between security vendor solutions and practitioner needs.
How do you define a blue team?
Blue teaming represents proactive practices put in place to expedite the identification and response processes needed to address malicious events that target greater IT business assets with speed. Through organized log management, hardening techniques, and cybersecurity analysis coupled with threat intelligence, blue teams bolster the SecOps department's ability to improve security maturity while maintaining the integrity of business continuity.
Leveraging existing toolsets, blue teaming enables cross-departmental ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month, and much more.
