Security News > 2021 > February > Security chaos engineering helps you find weak links in your cyber defenses before attackers do
Chaos engineering is a way for security teams to replace continuous firefighting with continuous learning, according to two industry experts.
At the RSA 365 Virtual Summit this week, Aaron Rinehart, CTO and co-founder Verica, and Jamie Dicken, manager of applied security at Cardinal Health, explained how this approach to IT security works.
During the presentation, Navigating the Unknowable: Resilience through Security Chaos Engineering, Dicken said one reason security teams are constantly running from one security incident to the next is the traditional design-oriented mindset.
Dicken used advice from management expert Dave Snowden to explain why security chaos engineering works: The only way to understand a complex system is to interact with it.
In December, O'Reilly published a report about security chaos engineering by Rinehart and Kelly Shortridge.
Her long-term goal is to use the security chaos experimentation to move to test-driven development.