Black Phoenix

Cyber Defense Assessments

Fourth Command Cyber Defense takes inspiration from the Drone TechSpace. Drones are used for Defensive Reconnaissance, Black Phoenix Program builds and lives the Cyber Security Validation Program for Enterprises.


Access to Fourth Command security consultants and expertise to respond to a breach, enhance your security practices and train your security teams.


Fourth Command services helps you prepare and train to defend your organization against sophisticated threat actors and attack techniques.

Tabletop Exercise

A discussion-based exercise where personnel with roles and responsibilities in a particular IT plan meet in a classroom setting or in breakout groups to validate the content of the plan by discussing their roles during a Cyber Incident or Cyber Attack Situation and their responses to a particular Cyber Incident. Fourth Command Consultant initiates the discussion by presenting a scenario and asking questions based on the scenario.

Red Team/ Blue Team

Red Team

A group of ethical hackers authorized and organized to emulate a potential adversary’s attack or exploitation capabilities against an enterprise’s security posture. The Red Team’s objective is to improve enterprise Information Assurance by demonstrating the impacts of successful attacks and by demonstrating what works for the defenders (i.e., the Blue Team) in an operational environment.

blue Team

The group responsible for defending an enterprise’s use of information systems by maintaining its security posture against a group of mock attackers (i.e., the Red Team). The Blue Team and its supporters must defend against real or simulated attacks
1) over a significant period of time,
2) in a representative operational context (e.g., as part of an operational exercise), and
3) according to rules established and monitored with the help of a neutral group refereeing the simulation or exercise (i.e., the White Team).

The Blue Team identifies security threats and risks in the operating environment, and in cooperation with the customer, analyzes the network environment and its current state of security readiness. Based on the Blue Team findings and expertise, they provide recommendations that integrate into an overall community security solution to increase the customer’s cyber security readiness posture.

Often a Blue Team is employed by itself or prior to a Red Team employment to ensure that the customer’s networks are as secure as possible before having the Red Team test the systems.

Purple Team Assessment

Purple Team Assessment evaluate your security organization’s ability to prevent, detect and respond to attack scenarios by using the latest threat intelligence and Security Validation technology. They focus on highly realistic scenarios relevant to your industry.

A Purple Team Assessment is recommended for organizations that want to test and develop the ability of their security team, processes and technology to detect, prevent and respond to targeted attack across all phases of the attack lifecycle.

Adversary Emulation

Adversary Emulation Exercise is designed to give your organization the experience of a sophisticated targeted attack by real-world threat actors without the damage or costs of experiencing an actual breach.

Cyber Security Maturity

Fourth Command’s Cyber Security Due Diligence Service, our experts analyse multiple cyber environments and business risk profiles to improve security program capabilities and provide actionable remediation recommendations to ensure combined security health and overall maturity alignment.

Penetration Testing

Identify vulnerable assets to strengthen your security defenses. Organizations do all they can to protect their critical cyber assets, but they don’t always systematically test their defenses. Penetration Testing from Fourth Command helps you strengthen your security for those assets by pinpointing vulnerabilities and misconfigurations in your security systems. Fourth Command’s penetration tests are custom-tailored to an organization’s environment and needs, assessing specific aspects of the security program and the state of security of an organization’s critical systems, networks and applications.
  • Penetration Testing for Web Applications
  • Penetration Testing for Mobile
  • Penetration Testing for Wireless
  • Penetration Testing for Physical Security
  • Penetration Testing for Social Engineering
  • Penetration Testing for Internal Attacks

Insider Threat Assessment

Fourth Command provides protection against insider threats for all stages of the attack lifecycle. Our purpose-built services assess your existing insider threat program and build effective security program capabilities to stop these threats in their tracks.

Protecting your organization against insider threats requires more than a data loss prevention solution. It is critical to assess your existing environment and implement effective, continuous security program capabilities to mature your security posture.

Remote Workforce Assessment

As organizations increasingly adopt and expand remote work models, they need to manage staff working from home using a variety of end user computing and collaboration platforms. Any sudden increase in remote working has the potential to change the attack surface and vulnerability of enterprise networks.

Remote Security Assessments are designed to help your organization understand the nature of and changes in attack surface exposure due to remote work. These assessments are tailored to your organization to minimize the risk of impacting system availability during testing and are delivered remotely with limited involvement of your security team.


Fourth Command services help you enhance your cybersecurity practices and controls with actionable recommendations to fortify your cybersecurity posture.

Active Directory Assessment

Active Directory can be complex and cumbersome to maintain, especially as technologies and organizations evolve. Organizations often struggle to properly maintain configurations and keep current with the latest security enhancements of Active Directory.

During an AD Assessment, Fourth Command helps your organization improve the key processes, configuration standards, security and monitoring controls required to effectively secure an Active Directory environment and its supporting infrastructure.

SOC Assessment

For organizations who are looking to build a new cyber defense function from the ground up, enhance their existing processes and supporting technology, or effectively measure their program performance, Fourth Command helps by improving your cyber defense posture against persistent and sophisticated real-world attacks.
The SOC Assessment evaluates an organization’s cyber defense capability, which typically includes the security operations center (SOC), incident response, cybersecurity validation, and cyber threat intelligence teams.
The assessment is led by Fourth Command consultants who leverage industry best practices and deep frontline expertise responding to advanced threats across various geographies and verticals.


Fourth Command services helps you stop breaches, investigate incidents, and recover from attacks with speed and surgical precision.

Incident Response Service

From investigation to crisis management, incident response helps resolve all aspects of cyber breaches with industry-leading expertise, including thorough technical investigation, containment and recovery.

After-hours coverage provided by Managed Defense for peace of mind that you are seamlessly protected 24/7 during investigation and remediation.

Incident Response Retainer

IRR allows you to establish terms and conditions for incident response services before a cyber-security incident is suspected. With an IRR in place, you have a trusted partner on standby. This proactive approach can significantly reduce the response time, thereby reducing the impact of a breach.

Compromise Assessment

Traditional cybersecurity solutions fail to identify today’s advanced persistent threats, allowing attackers to go undetected while they move laterally across your systems exfiltrating data and intellectual property.

• Identifies ongoing or past intrusions within your organization

• Assesses risk by identifying weaknesses in security architecture, vulnerabilities, improper usage or policy violations and system security misconfigurations

• Increases your organization’s ability to respond effectively to future incident

Cyber Defense Assessment

Cyber Defense Assessment evaluates an organization’s cyber defense capability, which typically includes the security operations center (SOC), incident response, cybersecurity validation, and cyber threat intelligence teams.

The assessment is led by Fourth Command consultants who leverage industry best practices and deep frontline expertise responding to advanced threats across various geographies and verticals. After the evaluation, Fourth Command delivers a report that contains a detailed improvement roadmap and prioritized implementation recommendations specific to your organization’s needs.

Ransomware Defense Assessment

Ransomware Defense Assessment evaluates the effectiveness of an organization’s ability to prevent, detect, contain and remediate a ransomware attack. Fourth Command experts assess technical and non-technical elements of your security program to determine how your team will respond to a ransomware attack.

Fourth Command experts evaluate the technical impact a ransomware attack could have on your internal network, discover what data could be jeopardized or lost and test the strengths and weaknesses of your security controls’ ability to detect and respond to a ransomware attack.

Threat Intelligence

Fourth Command services helps Optimize your threat intelligence capabilities

Cyber Threat Profile

The Fourth Command Cyber Threat Profile service gives you a composite picture of the most important and relevant cyber threats to your organization and how those threats are likely to materialize and impact you and your partners, now and in the future. The Cyber Threat Profile is an essential part of an intelligence-led security strategy–one that creates a proactive defensive posture to reduce cyber risk.

Intelligence Capability Development

Intelligence Capability Development services are designed specifically to help organizations realize true value from CTI. Organizations have worked with Fourth Command Intelligence Capability Development consultants as trusted advisors to build best practices for the consumption, analysis and practical application of CTI. As a result, they have increased the effectiveness and efficiency of their security programs.