Red Team Metrics

Red Team Metrics helps red teams consider customers’ core questions, identify relevant target metrics, analyze risk in adversary attack scenarios, assess outcomes, and communicate the risk issues and business impacts to the sponsor.

Red teaming (authorized, adversary-based assessment for defensive purposes) is a flexible tool that program managers and sponsors use to identify critical vulnerabilities; understand threat; deliver effective and secure components, systems, and plans; and consider alternative strategies and courses of action.

Because red teaming is applied in multiple problem domains and for different reasons, effective red teaming methods must be flexible and support customization.

The Red Team Metrics Process

Step one

The RED TEAM LEAD considers the customer’s core business questions, the types of red teaming involved, and types of relevant metrics to identify the set of targeted metrics needed for the assessment.

Step two

The RED TEAM applies the targeted metrics to their assessment process. The metrics inform the process by helping guide the assessment’s data collection, characterization, and analysis phases.

Step three

Risk is analyzed by the RED TEAM, based in part on the metrics identified and the data collected relative to them. The team analyzes the risk of various attack scenarios of one or more modeled adversaries.

Step four

Risk associated with various outcomes is assessed by the RED TEAM; a report is produced that communicates risk issues, supporting greater CUSTOMER understanding of business impacts.

Top of page