Jordan Drysdale与Kent Ickler将分享如何通过“原子紫队生命周期框架”来增强组织的信息安全人力资本。该框架旨在解决传统红蓝对抗模式下，因组织职业路径设计不当而产生的固有对立，并提出一套可行的紫队协作方法。该框架借鉴了ISO9001、ISO27001、六西格玛等持续改进框架，整合了风险分析、攻击、狩猎与防御方法论以及业务考量，以系统性地提升组织的安全态势。框架还融入了人力资本管理和知识流方法，促进隐性知识的交流与技能的有机增长，并能与日常业务管理和报告流程对齐，为紫队争取长期预算支持。

💡 **原子紫队生命周期框架：** 提出一种创新的方法来解决组织信息安全中红蓝对抗的固有对立，通过紫队协作模式来增强整体安全能力。该框架借鉴了成熟的持续改进方法论，如ISO9001和ISO27001，旨在提供一个结构化的工作流程。

🚀 **系统性提升安全态势：** 该框架通过整合风险分析、攻击模拟、威胁狩猎和防御策略，并充分考虑业务需求，实现对组织安全态势的系统性、持续性改进。它强调在攻击和防御之间找到平衡点，以达到最佳的安全效果。

🧠 **促进人力资本与知识共享：** 框架特别关注人力资本管理和知识流方法，鼓励团队成员之间的隐性知识交流，促进技能的有机增长。这有助于充分发挥所有信息安全人员的技能，打破信息孤岛。

💰 **优化预算与业务整合：** 原子紫队框架的设计能够与自然业务运营管理和报告流程对齐，为紫队争取内阁批准的预算提供了清晰的路径，确保了安全投入的长期性和有效性。它将安全工作与业务目标紧密结合。

Jordan Drysdale & Kent Ickler //

























Jordan and Kent are back again to continue strengthening organizations’ information security human capital (That’s all you folks!). Organization Leadership and Security Practitioners can gain understanding on the potential designed-to-fail Purple Teams initiatives never reached their full potential. The Duo reviews how systemic organizational career pathing created an insoluble Red vs Blue dichotomy.



MORE IMPORTANTLY: The team is announcing a recipe for Purple Team Wins:



The Atomic Purple Team (Lifecycle) Framework



Organizations struggling to efficiently leverage the skillsets of all information security staff will benefit from considering the Atomic Purple Team Lifecycle Framework’s business-driven workflow. The workflow takes its roots from tested continuous improvement frameworks like ISO9001, ISO27001, Six Sigma, and the like.



Watch how a methodical balance of risk analysis, attack, hunt and defend methodologies, and business considerations can effectively and continually improve an organizations’ security posture. As an added bonus, the framework incorporates concepts of Human Capital Management and knowledge-flow methodologies to encourage tacit knowledge exchange to further organic growth of the skillsets of all those involved in the Atomic Purple Team framework.



But wait, there’s more! Budget headaches? Learn how the Atomic Purple Team framework’s methodical flow also aligns to natural business operations management and reporting. The framework provides a clear path to cabinet-approved Purple Team budget appropriations to ensure long term security posture improvement.



Lastly, Jordan and Kent will demonstrate the Atomic Purple Team Lifecycle in action by running complete live Attack and Hunt/Defend lifecycle(s), all the way to risk management and budgetary thoughts.



Join the Black Hills Information Security Discord discussion server — https://discord.gg/aHHh3u5



Need slides and much more — https://github.com/DefensiveOrigins/A…



0:00 – Family Stories



1:07 – Atomic Purple Team Framework



<a rel="noreferrer noopener" href="https://www.youtube.com/watch?