How to persuade your boss to have a purple team 👾engagement performed...

Most security practitioners understand and appreciate the value of security testing and purple teams. But not all leadership will buy into it initially. Some thoughts I hope help change that. Using the Capita breach as supporting evidence. Ps - Thanks to stewart_sec on X for calling attention to this report. TLDR what happened: Malware got on a computer. A high alert was generated. No action by the SOC. ~4 hours later the TA logged into a host with a DA account. They had achieved privilege...