01377nas a2200217 4500000000100000000000100001008004100002653001500043653002700058653001400085653001800099653001600117653000800133100002500141700002300166700001300189245006200202300001200264490000700276520087600283 2022 d10aautomation10acybersecurity training10aexercises10aorchestration10ared teaming10aSly1 aPaloma de la Vallée1 aGeorgios Iosifidis1 aWim Mees00aCyber Red Teaming: Overview of Sly, an Orchestration Tool a273-2860 v533 a
The complexity of protecting interconnected IT systems grows with the development of new products and applications. Consequently, the capability of Security Operation Centre personnel to keep abreast of new threats is of utmost importance to ensure the security posture of all organisations. In that regard, hands-on exercises on a cyber range reproducing realistic situations can boost the ability of personnel to react appropriately and adequately to intrusion in a production context. Such exercises are known to improve situation awareness. However, the design and delivery of such trainings impose a heavy workload on cyber experts. Relying on an automation system for the execution of attacks considerably lightens the duties of experts and frees some of their time for less repetitive tasks. This article introduces an orchestrator dedicated to red teaming.