Cyber Crisis Tabletop Exercises

Defining a Tabletop Exercise

The Cyber Crisis Tabletop Exercise designed and run by CM-Alliance is a unique blend of verbal and visual simulation along with interactive discussions on an agreed cyber-attack scenario relevant to an organisation.

Our tabletop exercises are:

• Conducted in a highly engaging and interactive format, ensuring maximum participation and highly relevant output and constructive discussions.
  
  
• Structured as a combination of scenario walkthroughs and engaging and practical exercises.
  
  
• Followed up with a comprehensive report with an easy-to-understand maturity scoring system.
  
  

What we call a Cyber Crisis Tabletop Exercise (CCTE) is known by several different names including cyber scenario tabletop exercises, cyber scenario exercises, incident response workshops, incident response tabletop exercises, cyber scenario testing, and cyber scenario response workshops.

Why run a Cyber Scenario Tabletop Exercise

“Documents that have never been read, procedures that have never been practiced, checklists that have never been verified are as useful and functional as having a brand-new mobile phone with no charging cable or power adaptor.” 
Amar Singh, CEO, Cyber Management Alliance Ltd

The only way you can determine if your incident response plans will work during a real crisis is to test them. At CM-Alliance, we believe that practice makes perfect when it comes to cyber crisis management.  Running practice cyber scenario response workshops:

• Trains the subconscious brain to instinctively and accurately respond to a rehearsed situation leading to less catastrophic errors and more uniform and beneficial responses.
  
  
• Builds resilience by increasing inter-departmental collaboration and awareness of procedures and processes.

Benefits of a Running A Cyber Incident Response Workshop with CM-Alliance:

We are one of the world’s leading independent cyber incident & crisis management authorities and creators of several courses and workshops in cyber incident response and planning, playbooks and crisis management. 

Benefits of partnering with CM-Alliance to host your testing tabletop exercises include;

• Confidence: Know that your existing response plans are effective and fit-for-purpose.
  
  
• Compliance: Receive formal scoring for your tabletop exercise and demonstrate compliance to regulations and auditors.
  
  
• Non-disruptive & Zero Risk: Safely evaluate your plans, review your decisions and gauge the impact on your critical systems and clients.
  
  
• Enhanced & Interactive Learning: Realistic scenarios engage the stakeholders improving their learning and increasing retention of key lessons.

Our Approach to Cyber Incident Response Tabletop Workshops

We take a structured approach to planning and running our tabletop exercises and have a straightforward process.

• Fact Find: We start with gathering as much information about your business, its stakeholders and its critical assets.
  
• Scenario Planning: After assessing the inputs we move on to planning and outlining the scenario and follow that up with a dry-run with you.
  
• Cyber Crisis Tabletop Exercise (CCTE):  During the tabletop exercise we facilitate the workshop and monitor the pace and substance of the discussions. 
  
  
• Management Report: After the exercise we produce an objective and detailed analysis of the exercise and provide a formal maturity score. 

The image below describes, step-by-step, how we approach our cyber testing workshops 

Formal Maturity Report and Presentation:

After the tabletop exercise you receive a formal executive summary and report that contains:

• A formal assessment of the exercise on a scale of 1 -5, scored against 10 different areas.
  
  
• A score of your organisation’s breach-readiness for the cyber-attack scenario.
  
  
• Analysis of the existing processes, procedures and their effectiveness during the tabletop exercises.

Participants:

We offer both management focused and technical tabletop exercises and recommend the following participants for both audiences:

• Staff responsible for making critical decisions.
  
  
• Staff who are either heads of their function and or fully understand how the department operates.
  
  
• For management exercises there must be representation from all functions like PR, communications, legal, HR, sales and marketing, to name a few.
  
  
• Technical staff who know the systems and processes.
  
  

Why Cyber Management Alliance Ltd:

We are one of the world’s leading independent cyber incident & crisis management authority offering advisory services, executive training and bespoke workshops in all aspects of cyber crisis management, incident planning, incident-response testing and tabletop exercises. 

We are the creators of the internationally acclaimed UK-Government’s NCSC-Certified,  Cyber Incident Planning and Response (CIPR) course and have trained attendees from organisations including the United Nations, UK Ministry of Defence, several UK Police Forces, NHS Trusts, European Central Bank, Swiss National Bank, Microsoft, Ernst and Young and many others.

As part of our Cyber Incident & Crisis Management training and workshops we offer:

All trademarks, service marks, trade names, product names, service names and logos appearing on the site, or on printed or digital material are the property of their respective owners, including in Cyber Management Alliance Ltd. Any rights not expressly granted herein are reserved.