Trevin Edgeworth

Trevin Edgeworth

Red Team Practice Director, Bishop Fox

Trevin Edgeworth is the Red Team Practice Director at Bishop Fox, where he focuses on building and leading best-in-class adversary emulation services to help customers of all sizes and industries strengthen their defenses against current and emerging threats. Trevin has over 20 years of security experience; he has built and overseen red team programs for several Fortune 500 companies, including American Express, Capital One Financial, and Symantec Corporation. Other accomplishments include leading a security organization as Chief Security Officer (CSO) for a major security company. Trevin has led a variety of security functions in his career, including cyber threat intelligence, hunt, deception, insider threat, and others. Trevin is an active member of the security community. He has presented at several industry conferences and been interviewed by leading publications on topics such as red teaming and threat intelligence.

All Sessions by Trevin Edgeworth

Converge Security Conference 2024 October 25, 2024
2:30 pm - 3:20 pm

Building An Effective Red Team Program for Maximum Impact

Platinum 3

No matter your organization’s security goals, challenges, and level of maturity - there is no single, more effective way of proving whether your organization is susceptible to today’s threats or the effectiveness of your security controls than to emulate real-world attacks and see how your program stands up against an attacker’s tactics and techniques. Whether the question is “Can an attacker deploy ransomware in my environment?” or “Can a rogue employee exfiltrate all of my customer data without detection?”, the only definitive way to answer these types of questions is to simulate the attack and see how you stack up.

Enter Red Teaming. Red Teams conduct end-to-end assessments of the full organization (network, physical and social) using the full kill chain to provide insights into the organization’s overall security posture and resilience to realistic attack scenarios.

While Red Teaming is the gold standard for testing defenses, creating an effective program is no small feat. In this talk, Trevin Edgeworth, a former CISO and a Red Team leader for several Fortune 500 companies, shares his personal experience building and leading Red Teams, as well as strategies for setting up your organization for success.

This session will address foundational Red Team concepts and best practices, including:
•What is red teaming (and what is it not)
•Red teaming approaches and methodologies
•Assessing organizational readiness
•Attracting and retaining top talent
•Cultivating a strong Red/Blue Team relationship
•Measuring success and reporting to leadership