II.
Workflow overview
Reference · liveworkflow:red-team-exercise
Red Team Exercise overview
Conducts an adversarial red team exercise against production systems — simulating real-world attack scenarios, testing detection and response capabilities, evaluating security control effectiveness, and debriefing with blue team for lessons learned. Excludes vulnerability remediation.
Attributes
displayName
Red Team Exercise
workflowKind
security
triggerType
scheduled
typicalCadence
semi-annual
complexity
cross-team
description
Conducts an adversarial red team exercise against production systems —
simulating real-world attack scenarios, testing detection and response
capabilities, evaluating security control effectiveness, and debriefing
with blue team for lessons learned. Excludes vulnerability remediation.
Outgoing edges
applies_to_domain2
- domain:cybersecurity·DomainCybersecurity
- domain:security·DomainSecurity
involves_role3
- role:security-reviewer·RoleSecurity Reviewer
- role:incident-commander·RoleIncident Commander
- role:platform-engineer·RolePlatform Engineer
performed_by_org_unit2
- org-unit:security-team·OrgUnitSecurity Team
- org-unit:incident-response-team·OrgUnitIncident Response Team
requires_skill_area2
- skill-area:incident-response·SkillAreaIncident Response
- skill-area:k8s-rbac·SkillAreaKubernetes RBAC
triggers_responsibility2
- responsibility:respond-incidents·ResponsibilityRespond to production incidents
- responsibility:threat-modeling·ResponsibilityThreat modeling
Incoming edges
None.