Free

#DMUCyberWeek: The Evolution of Offensive Security Testing

Event Information

Share this event

Date and Time

Location

Location

De Montfort University

The Gateway

Gateway House (5.39)

Leicester

LE1 9BH

United Kingdom

View Map

Event description

Description

The Evolution of Offensive Security Testing

Advances in Red Team Testing

Steve Wilson, BT


It’s far better to test your own security, and find any holes, before someone more malicious does it for you. This simple premise has led to the evolution of the penetration testing industry. As a large global telecommunications company, BT has a threat landscape that ranges from the casual attacker right through to nation state actors. It is crucial that we understand these threats, and prepare appropriately to defend ourselves against them.

Changes in the world of security testing mean we are supplementing existing penetration testing practices by developing new methodologies and frameworks to improve the way systems are tested to reduce the risk of compromise. More recently, the team at BT has continued to expand and improve its capabilities with regard to the more offensive “Red Team” end of the testing spectrum, to reflect more accurately those who may attack us.

This presentation is intended to provide an introduction to the noble art of penetration testing, some critiques of previous approaches, examples of new testing methodologies we’ve implemented, sanitised war stories of real attacks against real systems, and a view to the future.



Speaker bio:

Explorer, philanthropist, bon viveur…

None of these are descriptions that have been applied to Steve Wilson in the past.

Escaping from Teesside University with a degree in Software Engineering, his career started with the MoD at Malvern’s Defence Research Agency. Initially working as a research scientist focussed on directory and messaging systems, he then worked for a while as a sys admin and Trusted Solaris developer before moving through roles involving penetration testing, incident response, technical training and forensics consultancy. First qualifying as a CHECK Team Leader in 2001, he has continued to be involved with CHECK level penetration testing of numerous Government and commercial systems across a variety of industries. Since joining BT, he's been getting involved in the more offensive “Red Team” side of testing work, in addition to developing and delivering training courses for internal staff. Outside of the office, he is often to be found attending Cyber Security Challenge (and similar) events, representing BT and trying to teach people a thing or two about our work and the wider industry, as well as physical security and how to bypass or open locks. In his spare time, Steve enjoys lock picking, manufacturing thermal lances, organising conferences, “hacker” social events and wandering about on the Malvern hills.



This event is part of #DMUCyberWeek. For full programme of events, please visit: www.dmu.ac.uk/cybertech

Share with friends

Date and Time

Location

De Montfort University

The Gateway

Gateway House (5.39)

Leicester

LE1 9BH

United Kingdom

View Map

Save This Event

Event Saved