Free

MITRE ATT&CK Defender™ ATT&CK® Purple Teaming Fundamentals

Do you want to learn the exciting discipline of Purple Teaming? In this MITRE ATT&CK® Defender™ (MAD) Purple Teaming Fundamentals course, you’ll learn to do collaborative purple teaming focused on prioritized malicious behaviors. Experts from MITRE show you the actionable defensive rewards that only come when red and blue teams work together.
1
58
M
Time
intermediate
difficulty
2
ceu/cpe

Course Content

Course Description

Do you want to learn the exciting discipline of Purple Teaming? In this MITRE ATT&CK® Defender™ (MAD) Purple Teaming Fundamentals course, you’ll learn how to plan, design, and implement a collaborative purple teaming engagement focused on prioritized malicious behaviors. Experts from MITRE show you the actionable defensive rewards that only come when red and blue teams work together.

Who should take this course?

This course is designed for experienced and skilled cybersecurity practitioners who are interested in running collaborative purple team events to help improve their defensive posture.

What are the prerequisites for this course?

You will gain the most benefit from this course if you have mastered the following:

  • MITRE ATT&CK® Defender™ (MAD) ATT&CK Fundamentals Training
  • MITRE ATT&CK® Defender™ (MAD) Adversary Emuliation Training
  • MITRE ATT&CK® Defender™ (MAD) Threat Hunting Fundamentals Training
  • Why should I take this course?

    In this course, you will gain the ability to do the following:

  • Partner with stakeholders to identify top priority defensive gaps to address through purple teaming
  • Convert high-level requirements into an actionable purple team plan
  • Determine requirements for the purple team environment, taking into account tradeoffs between common options
  • Coordinate red and blue teams to engage collaboratively to develop new, actionable defensive measures (with a focus on analytics)
  • Elicit and document recommendations for future action, including analytics to deploy, and possible future purple team events
  • What makes this course different from other courses on similar topics?

    This course is part of the MITRE ATT&CK® Defender™ (MAD) cybersecurity training and certification program produced by MITRE's own subject matter experts. The instructors for this course are truly the experts in this field. You will be learning how to leverage ATT&CK for purple teaming from the people who created the ATT&CK framework.

    Why should I take this course on Cybrary and not somewhere else?

    This course enables you to learn from the foremost experts in the field, and our on-demand format affords you the flexibility to learn at your own pace.

    This course is part of a Career Path:
    No items found.

    Instructed by

    Instructor
    Jamie Williams

    Jamie Williams is a Cyber Adversarial Engineer for the MITRE Corporation. He works on various exciting efforts involving security operations and research, specializing in adversary emulation and behavior-based detections. He also leads teams that help shape and deliver the "adversary-touch" within ATT&CK® and ATT&CK Evaluations.

    Before joining MITRE, Jamie received his M.S. in Information Systems Engineering from Johns Hopkins University and his B.S. in Information Systems from the University of Maryland, Baltimore County (UMBC).

    Instructor
    Steve Luke

    Since 2007, Steve has focused on delivering innovative solutions to cyber missions, with a special focus on ATT&CK® and its application to hunting. Steve co-authored a paper on TTP-Based Hunting, developed and delivered educational materials about that methodology, and leads purple teaming events to explore ATT&CK techniques and develop robust analytic approaches to detect them. He is one of the MAD Professors for the Threat Hunting course.

    Steve earned a B.S. and Masters of Engineering in Electrical Engineering from Cornell University with a focus on digital signal processing. He served as an officer in the United States Air Force prior to joining MITRE in 2005.

    Instructor
    Daniel Matthews

    In addition to creating courses for MITRE ATT&CK Defender™, Daniel has worked as a developer squad lead in MITRE's CALDERA™ project for automating adversary emulation and currently serves as one of the developer leads for MITRE ATT&CK® Evaluations. As part of these roles, Daniel has had the opportunity to participate in numerous purple team events and shape adversary emulation efforts for various organizations. Prior to joining MITRE, Daniel received a B.S. in Computer Science, with a specialization in cybersecurity, as well as a B.S. in Mathematics from the University of Maryland, College Park. While he originally planned on working in the field of biology and natural sciences, he found an interest in computer science, which quickly turned into a passion for cybersecurity in college. Outside of work, Daniel enjoys hiking with his dog, gardening with his wife, and trying out new recipes for dinnertime - his current favorites are Peruvian and Indian cuisines.

    Provider
    Cybrary Logo
    Certification Body
    Certificate of Completion

    Complete this entire course to earn a MITRE ATT&CK Defender™ ATT&CK® Purple Teaming Fundamentals Certificate of Completion