One Week Left to Get an 11" iPad Pro with Apple Pencil w/ OnDemand Training


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Breaking Red - Understanding Threats through Red Teaming

  • Friday, March 17, 2017 at 3:00 PM EST (2017-03-17 19:00:00 UTC)
  • James Tubberville, Joe Vest

You can now attend the webcast using your mobile device!



The term Red Team or Red Teaming has become more prevalent in the security industry. Both commercial and government organizations conduct "Red Team Exercises". What does this mean? What is a Red Team engagement? How is it different that other security tests? Isn't current penetration and vulnerability security testing enough?

Red Teaming share many of the fundamentals of other security testing types, yet focuses on specific scenarios and goals that are used to evaluate and measure an organization's overall security defense posture.

Organizations spend a great deal of time and money on the security of their systems. Red Teams have a unique goal of testing an organization's ability to detect, respond to, and recover from an attack. When properly conducted, Red Team activities can significantly contribute to the improvement an organization's security controls, help hone defensive capabilities, and measure the effectiveness of security operations.

This presentation introduces Red Teaming concepts and the new SANS Red Teaming course - SEC564 Red Team Operations and Threat Emulation

Speaker Bios

Joe Vest

Joe Vest has worked in the information technology industry for over 17 years with a focus on red teaming, penetration testing and application security. As a former technical lead for a DoD red team, he has extensive knowledge of cyber threats and their tactics, techniques, and procedures including threat emulation and threat detection. Joe is the co-founder of the security consulting company MINIS LLC, providing innovative solutions for the mitigation against an ever-changing cyber threat. He is the co-author of the SANS SEC564 Red Team Operations and Threat Emulation course. He was the technical editor for the book RTFM - Red Team Field Manual. As a leading security professional, he has achieved numerous security certifications: OSCP, CISSP-ISSMP, CISA, GPEN, GCIH, GWAPT, CEH, Security+

James Tubberville

James Tubberville has held a number of technical positions and management roles over a 17 year career focused on system, network, application and information security. James is a former member and lead for a NSA certified Red Team and has conducted threat computer network operations, red teaming, penetration testing, and physical security assessments for a variety of commercial and government customers . He is currently Executive Director of MINIS LLC, a Cyber and Information Security consulting company specializing in red teaming, cyber threat analysis, and threat mitigation. As a security professional, James has achieved numerous information technology and security related certifications and awards.

Twitter: @minis_io

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.