SecProve
ProfessionalVendor-neutralMITRE Engenuity· issued from US

MAD Purple Teaming

MITRE ATT&CK Defender — Purple Teaming

MAD20 track for Purple Teaming with ATT&CK methodology. 32 lectures, planning and execution walkthroughs. Covers coordination between red and blue teams using the ATT&CK framework. Badge upon completion (13 CPE hours).

Official page at MITRE Engenuity↔ Compare with another cert
Exam fee
$0
Ongoing
Study time
80–160 hrs
Delivery
Validity

› Quality score

27.5 / 40

Four-axis SecProve rubric, each 0–10. SecProve editorial assessment — each axis carries a written justification so you can push back on any single call without dismissing the whole score.

Blueprint rigor
How well-defined and rigorous the exam blueprint is.
Purple Teaming ECO — orchestrated attack-defence cycles aligned to ATT&CK.
7.5/10
Practical evidence
Hands-on labs / written reports vs pure MCQ.
Lab-style purple-team engagement.
7.0/10
Currency & upkeep
How aggressively content is kept current with the field.
Updated alongside ATT&CK.
8.0/10
Market recognition
How often this signal actually moves a hiring decision.
Recognised in purple-team programs.
5.0/10

› Built for these roles

Purple Team LeadRed Team OperatorBlue Team LeadSecurity Operations Manager

› Exam format

Course-based with badge: 32 lectures + walkthroughs. No separate exam. 13 CPE hours.

› Recertification

Annual AMF program required to maintain certification. Access to updated course content and exclusive webinars.

› NICE Framework work roles

The NIST NICE work-role IDs this cert maps to. NICCS lookup.

PD-WRL-001PD-WRL-003PD-WRL-007
Recognition
Global
Exam languages
en

› Core domains covered

The 2 domains this cert is centrally about. Passing the exam demonstrates working knowledge of each.

A9Penetration Testing & Red Teaming

Methodology (OSSTMM, PTES), web/network/mobile pentesting, social engineering, purple teaming.

A11Detection Engineering & Threat Hunting

SIGMA/YARA/Suricata rule writing, hypothesis-driven hunting, log deep-dives, detection gap analysis.

› Prerequisites

Experience

MAD ATT&CK Fundamentals (required). Recommended: red or blue team experience.

› Progression

requiredrecommended

Where this cert fits in the typical learning path. Required edges are vendor-gated; recommended edges reflect de facto industry progression.

Required prereqs (0)

No vendor-gated prereqs.

Recommended priors (1)
MAD FundamentalsMITRE Engenuity
MAD Purple Teaming
MITRE Engenuity
Required by (0)

No certs require this one.

Recommended next (0)

No follow-on certs reference this one yet.

See this cert’s domains highlighted on the interactive map, or compare it against the rest of the catalog.

Highlight on the domain mapBrowse all certifications