Launched in 2017, Taiwan's Red Team assessment service is now entering its seventh year. Through nearly 100 Red Team assessment, we've observed that companies with different levels of cybersecurity maturity have distinct goals and expectations for these drills. In our lecture, we will discuss the three stages of Red Team assessment as defined by DEVCORE, emphasizing how companies can adapt their mindset, expectations, and methodologies at each stage to maximize benefits. Additionally, we will share for the first time statistical data across different industries at these stages, offering recommendations on the awareness companies should possess before conducting Red Team assessment.