Cyber Crisis Tabletop Exercise

Testing and measuring your Organisation’s Cyber Incident Response Plans and Breach Readiness Maturity

Cyber Crisis Tabletop Exercises

Defining a Cyber Security Tabletop Exercise

The Cyber Incident Response Tabletop Scenario Exercises designed and run by CM-Alliance is a unique blend of verbal and visual simulation along with interactive discussions on an agreed cyber-attack scenario relevant to the organisation.

Our cyber incident response tabletop scenario exercises are:

  • Conducted in a highly engaging and interactive format, ensuring maximum participation and highly relevant output and constructive discussions.
  • Structured as a combination of scenario walkthroughs and engaging and practical cyber security tabletop exercise templates. 
  • Followed up with a comprehensive report with an easy-to-understand maturity scoring system.

We are a UK Government Crown Commercial Service Supplier (G-Cloud 12) and the Cyber Crisis Tabletop exercise is listed on Digital Marketplace. 

New call-to-action

Why run a Cyber Tabletop Exercise

On the topic of tabletop exercises, Amar Singh, the CEO of Cyber Management Alliance Ltd puts it very succinctly. 

“Documents that have never been read, procedures that have never been practiced, checklists that have never been verified are as useful and functional as having a brand-new mobile phone with no charging cable or power adaptor.” 
Amar Singh, CEO, Cyber Management Alliance Ltd

Remote or Onsite Exercise? We can run a full cyber incident response tabletop scenario exercise either remotely or onsite.  

The only way you can determine if your incident response plans will work during a real crisis is to test them with a tabletop exercise. At CM-Alliance, we believe that practice makes perfect when it comes to cyber crisis management.  Running practice cyber scenario response workshops:

  • Trains the subconscious brain to instinctively and accurately respond to a rehearsed situation (cyber security tabletop exercise template) leading to less catastrophic errors and more uniform and beneficial responses.
  • Builds resilience by increasing inter-departmental collaboration and awareness of procedures and processes.

Benefits of a Running A Cyber Incident Response Workshop with CM-Alliance:

We are one of the world’s leading independent cyber incident & crisis management authorities and creators of several courses and workshops in cyber incident response and planning, playbooks and crisis management. 

Benefits of partnering with CM-Alliance to host your testing tabletop exercises include;

  • Confidence: Know that your existing response plans are effective and fit-for-purpose.
  • Compliance: Receive formal scoring for your tabletop exercise and demonstrate compliance to regulations and auditors.
  • Non-disruptive & Zero Risk: Safely evaluate your plans, review your decisions and gauge the impact on your critical systems and clients.
  • Enhanced & Interactive Learning: Realistic scenarios and cyber security tabletop exercise templates engage the stakeholders improving their learning and increasing retention of key lessons.

"I would recommend Cyber Management Alliance’s tabletop workshops to anyone genuinely interested in being on top of their cyber incident response strategies. The format and style of conducting the entire workshop is what I found a lot of value in. Most importantly, the scenarios on which the workshop was based were relevant to the business, making the exercise a great investment of time and resources."

Mudassar Ulhaq - Chief Information Officer - Director 
Waverton Investment Management, London, UK

Cyber Crisis Tabletop Exercise Brochure Download

Our Approach to Cyber Incident Response Tabletop Workshops

We take a structured approach to planning and running our tabletop exercises and have a straightforward process.

  • Fact Find: We start with gathering as much information about your business, its stakeholders and its critical assets.
  • Scenario Planning: After assessing the inputs we move on to planning and outlining the data breach tabletop exercise template and scenario and follow that up with a dry-run with you.
  • Cyber Crisis Tabletop Exercise (CCTE):  During the tabletop exercise we facilitate the workshop and monitor the pace and substance of the discussions. 
  • Management Report: After the exercise we produce an objective and detailed analysis of the exercise and provide a formal maturity score. 

The image below describes, step-by-step, how we approach our cyber testing workshops 

CCTE Our Approach

Formal Maturity Report and Presentation:

After the tabletop exercise based on a data breach tabletop exercise template you receive a formal executive summary and report that contains:

  • A formal assessment of the exercise on a scale of 1 -5, scored against 10 different areas.
  • A score of your organisation’s breach-readiness for the cyber-attack scenario.
  • Analysis of the existing processes, procedures and their effectiveness during the tabletop exercises.


We offer both management focused and technical tabletop exercises and recommend the following participants for both audiences:

  • Staff responsible for making critical decisions.
  • Staff who are either heads of their function and or fully understand how the department operates.
  • For management exercises, there must be representation from all functions like PR, communications, legal, HR, sales, and marketing, to name a few.
  • Technical staff who know the systems and processes.

If relevant, representatives from key service providers

"The CCTE and corresponding audit conducted by Cyber Management Alliance Ltd was expertly delivered and has given us insights to reinforce our cyber strategy by continuing to help build the picture of where we were, where we are now and our next focussed steps. We will be engaging CM-Alliance on an annual basis."

Neil Mallon - Strategic Technology Leader
Aster Group UKNew call-to-action

"Cyber Management Alliance Ltd assigned their top and experienced security consultants to deliver our requirements. The consultants worked closely with my team and conducted output focused workshops to then plan, produce and conduct deeply engaging tabletop exercises. CM-Alliance's methodology and approach helped extract the most relevant information and data to enable them to construct highly relevant attack scenarios. 

Both the technical and executive tabletop sessions conducted by Cyber Management Alliance Ltd met all our objectives. The attendees from both the sessions were impressed with the facilitation and the outcome driven approach and left the participants more informed and aware of the response processes and procedures."

Nadeem Bashir
IT Compliance Manager
Otsuka Pharmaceutical Europe Ltd.

View Tabletop Exercise Case Studies

Why Cyber Management Alliance Ltd:

We are one of the world’s leading independent cyber incident & crisis management authority offering advisory services, executive training, and bespoke workshops in all aspects of cyber crisis management, incident planning, incident-response testing and tabletop exercises. 

We are the creators of the internationally acclaimed UK-Government’s NCSC-Certified,  Cyber Incident Planning and Response (CIPR) course and have trained attendees from organisations including the United Nations, UK Ministry of Defence, several UK Police Forces, NHS Trusts, European Central Bank, Swiss National Bank, Microsoft, Ernst and Young and many others.

All trademarks, service marks, trade names, product names, service names and logos appearing on the site, or on printed or digital material are the property of their respective owners, including in Cyber Management Alliance Ltd. Any rights not expressly granted herein are reserved.

New call-to-action

Book a call to discuss or ask any questions about the course. Please don't forget to change your location first.