Overview
Malicious cyber actors can exploit vulnerabilities that don’t yet have any protection or detection mechanisms available or in place. Conducting attack simulations can help prepare your organisation to combat the inevitable unknowns of a cyber attack.
Attack simulations are designed to test the strength of an organisation’s security mechanisms by launching a simulated attack on its infrastructure.
These types of tests help organisations identify, understand, and implement better technical defences against attacks, with minimal disruption to their daily activities.
The simulations are conducted in a controlled environment with the help of cyber security consultants and can measure key performance indicators (KPIs) such as:
- Time to detect an attack
- How long it takes for various systems to recover from attacks
- Which parts of the infrastructure were affected by particular types of malicious software.
Whatever your needs are in terms of attack simulation testing, on-demand or as part of your cyber security assessment, we have you covered.
Attack Simulation Services
Red Teaming
Red teaming exercises are the best way to strategise how to develop your defensive capabilities comprehensively. Our teams can simulate the role of an attacker to test the defences of your perimeter and internal network. We can also engage with your internal security team throughout this process to help improve your overall security posture.
Purple Teaming
Purple teaming is an exercise in unifying the powers of both the red and blue teams, typically with an objective to improve communication, build trust, and increase speed for incident response. We can simulate attacks on your business with objectives to test detection mechanisms, identify vulnerabilities, and maintain access throughout the course of the attack simulation.
Assumed Breach Testing
Assumed breach testing begins with our testers on the target network investigating what can be achieved if an attacker successfully breaches the network perimeter. We will take steps to escalate privileges and map your network, find vulnerabilities, and determine if there are any blind spots in your detection capability.
Foreign Interference Testing
Foreign interference testing combines threat hunting and cyber security testing. It analyses your detection capabilities and how your organisation deals with probing and sustained threats within your network. While testing within the network, our associates will also search for signs of intrusion and malicious activity. Anchoram’s foreign interference tests simulate real-world incidents so that you can develop pragmatic and effective incident response mechanisms.
Why Anchoram?
The Anchoram story is based on integrity. We are anchored in Integrity, our core value and we aim to show this through our work and dealings with our internal staff, external collaborators and most importantly while serving our clients. Anchoram’s other key values are Professionalism, Empathy and Authenticity.
Our people are attracted to these values and we work together to bring a wealth of accounting, business management and other relevant experience to best serve our clients.
Pre-Emptive Security Services
Penetration testing provides assurance that systems and their respective security controls are working as intended, and are not susceptible to exploitation.
Attack simulations are designed to test the strength of your security mechanisms by simulating an attack on your infrastructure.
Security reviews identify existing vulnerabilities and provide insight into how they may have manifested, as well as determining strategies and techniques to avoid future vulnerabilities.
Practice Lead
Paul Leitao
Partner
Security Testing
Paul Leitao is a Melbourne-based security consultant who has spent the last 20 years working in various information security-related fields and the previous 5 years as a system and network administrator. He has carried out numerous penetration testing engagements for some of the largest financial institutions in Australia and specialises in the areas of vulnerability assessment, penetration testing, intrusion detection architecture design, incident handling and SOC uplift and optimization.
Prior to joining MyEmpire, Paul worked across many industry verticals and across many sub domains.
He has worked in financial services, construction, consulting, telecommunications, state and federal government and higher education sectors.
Paul has serviced major clients including NBN, the ANZ Bank, Victoria Police and Monash University.