Randori named leader in Attack Surface Management in GigaOm ASM Radar Report


EMA Report: Compliance Budget For A Red Team Capability

Getting More Out of Your Compliance Budget:

Companies of every size face an age-old problem: too much to do with too little money. For security leaders, this has always been true: every company wants to be more secure, but there never seems to be enough resources to make it a reality. In this report, EMA outlines how enterprises can leverage their existing compliance budgets to invest in building a red team capability by adopting  Continuous Automated Red Teaming (CART) platforms such as Randori Attack.

Key Benefits of Continuous Automated Red Teaming (CART):

  1. Attack Surface Discovery & Monitoring
  2. Honest Assessments of Real Security and Compliance Challenges
  3. Validating Security and Compliance Spending

About the Author:

Christopher Steffen - Research Director, Security and Risk Management, EMA

Chris brings over 20 years of industry experience to Enterprise Management Associates, focusing on IT management/leadership, cloud security, and regulatory compliance.

Chris has had a variety of roles as a professional, from Camping Director for the Boy Scouts to Press Secretary for the Colorado Speaker of the House. His technical career started in the financial services vertical as the systems administrator for a credit reporting company. As the company continued to grow, Chris built the Network Operations, Information Security, and Technical Compliance practices before leaving as the Principal Technical Architect. He was the Director of IT for a manufacturing company and the Chief Evangelist for several technical companies, focusing on cloud security.

Prior to joining EMA, Chris served as the CIO of a financial services company and supervised the technology-related functions of the enterprise, including the development and implementation of the company’s technical vision and management of the technical staff. He also guided the company through a NIST 800-53 evaluation and successfully obtained an Authority to Operate (ATO).

Chris holds several technical certifications, including Certified Information Systems Security Professional (CISSP) and Certified Information Systems Auditor (CISA), and was awarded the Microsoft Most Valuable Professional Award five times for virtualization and cloud and data center management (CDM).

B.A., Political Science (Summa Cum Laude), Metropolitan State College of Denver

About EMA

Founded in 1996, Enterprise Management Associates (EMA) is a leading industry analyst and consulting firm that specializes in going “beyond the surface” to provide deep insight across the full spectrum of IT and data management technologies.