Defence Security
Blue Team Trainings
Defense against attacks and assaults
Members of a Blue Team are tasked with protecting an organization's infrastructure, whether against simulated attacks as part of a Red Team Exercise or real attacks from a threat actor. Members of a Blue Team are typically permanent employees within the organization. Blue Team members differentiate themselves from other IT security personnel by ensuring constant defensive readiness, proactively managing all monitoring systems, and intervening in security incidents.
What is the Blue Team concerned with?
The Blue Team's task is to continuously analyze existing IT systems, identify vulnerabilities and review the effectiveness of existing security measures in order to drive the further development of security policies.
Threat Intelligence is also part of the tasks. Here, information from external threat feeds is proactively evaluated in order to always be up-to-date on current threats and thus effectively detect IoAs and IoCs in the corporate environment.
The Blue Team is the counterpart of the Red Team, because here the focus is clearly on defense and support in incident response.
Tasks of the Blue Team
- Monitoring of all IT systems used in the company
- Conducting vulnerability assessments and audits
- Obtaining information on current IoCs and IoAs
- Threat Intelligence
- Threat Hunting
- Incident Response
- Evidence preservation and support for forensic analysis.
Trainings for the Blue Team
Do you have questions about our offers? We will be happy to advise you: +41 44 832 50 80 | Contact form
Blue Team Trainings
- EC-Council Certified Network Defender (CND)
- EC-Council Certified Threat Intelligence Analyst (CTIA)
- EC-Council Computer Hacking Forensic Investigator (CHFI)
- EC-Council Certified Incident Handler (ECIH)
- EC-Council Certified Cloud Security Engineer (CCSE)
- EC-Council Certified Cybersecurity Technician (CCT)
- Systems Security Certified Practitioner (SSCP)
- Packet Analysis with Wireshark Analyzer (PAW)
- Advanced Packet Analysis with Wireshark Analyzer (APAW)
- Packet Analysis Power Workshop (PAPW)
- CyberSec First Responder (CFR): Threat Detection & Response (CFR)
- CompTIA Security+ (SECURITY+)
- CompTIA Cybersecurity Analyst (CYSA+)
- CompTIA Advanced Security Practitioner (CASP+)
- Cyber Security & ANTI-HACKING Workshop (HACK)
- Master Class: Securing Active Directory Deep Dive (SADDD-L1)
- Master Class: Securing Active Directory Deep Dive LEVEL 2 (SADDD-L2)