CDO and CISOs know the red and blue teams. Red teams operate from the outside to simulate attacks. Blue teams work inside the companies to defend against these attacks.
But EY is adding a new shade: purple. The so-called purple team will marry both red and blue team functions. It will also be the first one to do so in Australia.
In a press release, EY argued that a purple team can increase the “effectiveness with real-time information sharing and work together to co-design new techniques to combat new cybersecurity threats.”
The new purple team will be housed in EY’s new 2,508 square foot Cybersecurity Center. It is the largest cybersecurity facility in the Asia Pacific region and is located in Melbourne, Australia.
Forty EY cybersecurity professionals will operate the Center. They are schooled in many risk disciplines and will collaborate between clients and partners. The Center is part of EY's global network and connects with worldwide cybersecurity and managed service professionals. It is connected to Singapore, China, and the Philippines facilities through real-time collaboration tools.
The Center will heavily rely on intelligent automation to improve client security operations. Examples highlighted include triaged incident response and threat protection and virtual hunting.
The 24/7 cybersecurity managed services are in a secure and controlled environment. Teams of EY consultants and cybersecurity teams on- and off-shore perform round-the-clock operations, but the data is kept onshore in Australia.
The purple team and the Center are a response to low protection seen across the region. The EY 2019 Global Information Security Survey found that 77% of organizations still operated with limited cybersecurity and resilience. Also, 87% of organizations warned they do not yet have sufficient budget to provide the levels of cybersecurity and resilience they want.
“Increasingly, organizations in Asia-Pacific are driving the world’s most exciting innovations and digital initiatives that will transform businesses, and ultimately, society, to deliver great efficiencies and benefits. However, innovation comes with risk, especially cyber-threats that are ever-changing,” said Richard Watson, EY Asia-Pacific Cybersecurity leader.
“The Center in Melbourne increases the abilities of EY services to solve complex cybersecurity challenges and resource shortage, whereby Asia-Pacific businesses can access EY knowledge to create innovative and customized services as they move towards a digital business model. By leveraging the teams of EY professionals, we able to monitor and assess cyber-threats specific to the client's business, helping clients to swiftly and effectively mitigate risk and strengthen businesses cyber resilience,” he added.