courses
Free

MITRE ATT&CK Defender™ (MAD) ATT&CK® Fundamentals Badge Training

MITRE ATT&CK® Defender™ (MAD) is a cybersecurity training and certification program produced by MITRE's own subject matter experts. Explore how a threat-informed mindset can help you focus your efforts on improving and understanding how your defenses fare against real-world adversaries in this MAD ATT&CK® Fundamentals Badge Training course.
4
Share
Start CourseSubscribe for UpdatesNeed to train your team? Learn more
Create Free AccountNeed to train your team? Learn more
1
1
M
Time
beginner
difficulty
2
ceu/cpe

Course Content

Understanding ATT&CK®
Benefits of Using ATT&CK®
Operationalizing ATT&CK®
ATT&CK® Navigator

4m

Benefits of Using ATT&CK®
Quantitative Scorecard

2m

Benefits of Using ATT&CK®
Common Language

3m

Benefits of Using ATT&CK®
Community Perspective

4m

Benefits of Using ATT&CK®
How ATT&CK® Grows and Evolves

4m

Understanding ATT&CK®
Groups and Software

4m

Understanding ATT&CK®
Data Sources and Detections

4m

Understanding ATT&CK®
Mitigations

2m

Understanding ATT&CK®
Techniques and Sub-Techniques

4m

Understanding ATT&CK®
Tactics

2m

Understanding ATT&CK®
Matrices/Platforms

4m

Understanding ATT&CK®
Introduction to ATT&CK®

6m

Understanding ATT&CK®
Course Summary

1m

Operationalizing ATT&CK®
Putting it all Together into Threat-Informed Defense

3m

Operationalizing ATT&CK®
Assessment and Engineering

4m

Operationalizing ATT&CK®
Threat Emulation

4m

Operationalizing ATT&CK®
Detection and Analysis

4m

Operationalizing ATT&CK®
Cyber Threat Intelligence

3m

Operationalizing ATT&CK®
Course Description

This journey begins with the MITRE ATT&CK® framework, a globally-accessible knowledge base and model for cyber adversary behavior based on real-world observations.

ATT&CK® Fundamentals will not only familiarize you with how the ATT&CK® knowledge base documents real-world adversary tactics, techniques, and procedures (TTPs), but also introduce the various ways we can exploit this understanding of adversary TTPs to address current (operational) and future (strategic) threats. Together we will explore how ATT&CK® enables us to produce measurable and trackable answers to the hard questions we face every day as defenders (such as “how does our decision to make us better/worse at defending against threats?”), making us more threat-focused and informed security practitioners.

Target Audience

Anyone involved or interested in threat modeling and applying this knowledge to improve how you and your organization defends against adversaries.

Prerequisites

A general understanding of information security and technology as well as their associated threats (i.e. malicious actors and malware).

Course Goals

By the end of this course, students should be able to:

  • Understand the structure and philosophy that continually shapes ATT&CK®
  • Identify the available ATT&CK® resources and operational use cases
  • Recognize how ATT&CK® empowers defenders through understanding threats
    • Note: Per our partnership agreement with MITRE Engenuity, MITRE will have access to learner usage data.

    This course is part of a Career Path:
    Become a SOC Analyst - Level 2
    This Career Path is for a Security Operations Center Analyst (SOC Analyst). This particular Career Path covers a more intermediate-level SOC role. As a SOC Analyst, your primary duty is to ensure that the organization’s digital assets are secure and protected from unauthorized access. That means that you are responsible for protecting both online and on-premise infrastructures, monitoring data to identify suspicious activity, and identifying and mitigating risks before there is a breach. In the event that a breach does occur, a SOC analyst will be on the front line, working to counter the attack. This career path is aligned to the Cyber Defense Incident Responder NICE/NIST Work Role.
    Cybersecurity Foundations
    Get everything you need to start your cybersecurity career journey, and stop wasting your time (and money) sorting through unreliable information from questionable sources. While the industry offers very lucrative career opportunities, finding accurate, relevant information to break into the field can be incredibly frustrating. That’s why we’ve crafted this foundational course, with curated content from expert instructors covering core concepts found across all cybersecurity roles. Build practical skills and gain confidence as you begin your cybersecurity journey.

    Instructed by

    Instructor
    Jamie Williams

    Jamie Williams is a Cyber Adversarial Engineer for the MITRE Corporation. He works on various exciting efforts involving security operations and research, specializing in adversary emulation and behavior-based detections. He also leads teams that help shape and deliver the "adversary-touch" within ATT&CK® and ATT&CK Evaluations.

    Before joining MITRE, Jamie received his M.S. in Information Systems Engineering from Johns Hopkins University and his B.S. in Information Systems from the University of Maryland, Baltimore County (UMBC).

    Provider
    Cybrary Logo
    Certification Body
    MITRE Engenuity
    Certificate of Completion

    Complete this entire course to earn a MITRE ATT&CK Defender™ (MAD) ATT&CK® Fundamentals Badge Training Certificate of Completion