NinjaOne’s new red team has a mandate to find vulnerabilities and fortify defenses

Red Team image

In today’s cybersecurity environment where every business is a target, it’s never been more necessary for companies to reexamine their security posture and look for ways to become more secure. Over the last year, NinjaOne has achieved numerous security milestones, including SOC-2 certification as well as external penetration testing and vulnerability assessments. Now, NinjaOne is developing a new “red team” with a mandate to find gaps and fortify NinjaOne’s armor. 

The new red team is directed by NinjaOne CSO Lewis Huynh, a cybersecurity veteran that started his security journey by hacking computers as a kid before moving on to roles at Oracle and cloud security consulting. Lewis brings a multi-disciplinary perspective to security at NinjaOne and has been a key force in strengthening the company’s cloud and software development environments.

“I’ve wanted to develop an internal red team since I first joined NinjaOne,” said Huynh. “Many companies will invest in periodic penetration testing and security assessments, but an internal red team is unique in that they are given the resources and time to actually break into the company. As we’ve worked over the last year to secure our cloud environments and codebase, scaling our security operations to provide round-the-clock exploit analysis is our next major goal.”

A red team — a group of highly specialized security professionals tasked with purposefully hacking into a company — can be extremely effective at finding vulnerabilities and carries advantages that external firms cannot provide. Penetration testing and assessments, while valuable, are snapshots in time, but a red team can devote the time and resources needed to holistically test a codebase and environment for every possible exploit. As employees themselves, NinjaOne’s red team benefits from “insider knowledge” and an understanding of how different parts of the business interact and the tools used by those inside the organization. 

“We feel we’ve done a lot to close as many doors as possible, but we know that it’s impossible to close all doors and exploit opportunities,” said Huynh. “As this new program ramps up, I’m hopeful that we find exploits that might have been missed. If we don’t find anything, to me, that’s a false reassurance — there has to be an area that’s been overlooked.”

NinjaOne is currently searching for the right candidates to join its red team, with plans to eventually grow the team to three professionals. For more information and to apply for the role, visit our Careers page.

Next Steps

Building an efficient and effective IT team requires a centralized solution that acts as your core service deliver tool. NinjaOne enables IT teams to monitor, manage, secure, and support all their devices, wherever they are, without the need for complex on-premises infrastructure.

Learn more about NinjaOne Endpoint Management, check out a live tour, or start your free trial of the NinjaOne platform.

You might also like

Ready to simplify the hardest parts of IT?
×

See NinjaOne in action!

By submitting this form, I accept NinjaOne's privacy policy.

NinjaOne Terms & Conditions

By clicking the “I Accept” button below, you indicate your acceptance of the following legal terms as well as our Terms of Use:

  • Ownership Rights: NinjaOne owns and will continue to own all right, title, and interest in and to the script (including the copyright). NinjaOne is giving you a limited license to use the script in accordance with these legal terms.
  • Use Limitation: You may only use the script for your legitimate personal or internal business purposes, and you may not share the script with another party.
  • Republication Prohibition: Under no circumstances are you permitted to re-publish the script in any script library belonging to or under the control of any other software provider.
  • Warranty Disclaimer: The script is provided “as is” and “as available”, without warranty of any kind. NinjaOne makes no promise or guarantee that the script will be free from defects or that it will meet your specific needs or expectations.
  • Assumption of Risk: Your use of the script is at your own risk. You acknowledge that there are certain inherent risks in using the script, and you understand and assume each of those risks.
  • Waiver and Release: You will not hold NinjaOne responsible for any adverse or unintended consequences resulting from your use of the script, and you waive any legal or equitable rights or remedies you may have against NinjaOne relating to your use of the script.
  • EULA: If you are a NinjaOne customer, your use of the script is subject to the End User License Agreement applicable to you (EULA).