Cyber Crisis Tabletop Exercises
Defining a Tabletop Exercise
The Cyber Crisis Tabletop Exercise designed and run by CM-Alliance is a unique blend of verbal and visual simulation along with interactive discussions on an agreed cyber-attack scenario relevant to an organisation.
Our tabletop exercises are:
- Conducted in a highly engaging and interactive format, ensuring maximum participation and highly relevant output and constructive discussions.
- Structured as a combination of scenario walkthroughs and engaging and practical exercises.
- Followed up with a comprehensive report with an easy-to-understand maturity scoring system.
What we call a Cyber Crisis Tabletop Exercise (CCTE) is known by several different names including cyber scenario tabletop exercises, cyber scenario exercises, incident response workshops, incident response tabletop exercises, cyber scenario testing, and cyber scenario response workshops.
Why run a Cyber Scenario Tabletop Exercise
Amar Singh, the CEO of Cyber Management Alliance Ltd puts it very succinctly.
“Documents that have never been read, procedures that have never been practiced, checklists that have never been verified are as useful and functional as having a brand-new mobile phone with no charging cable or power adaptor.”
Amar Singh, CEO, Cyber Management Alliance Ltd
The only way you can determine if your incident response plans will work during a real crisis is to test them. At CM-Alliance, we believe that practice makes perfect when it comes to cyber crisis management. Running practice cyber scenario response workshops:
- Trains the subconscious brain to instinctively and accurately respond to a rehearsed situation leading to less catastrophic errors and more uniform and beneficial responses.
- Builds resilience by increasing inter-departmental collaboration and awareness of procedures and processes.
Benefits of a Running A Cyber Incident Response Workshop with CM-Alliance:
We are one of the world’s leading independent cyber incident & crisis management authorities and creators of several courses and workshops in cyber incident response and planning, playbooks and crisis management.
Benefits of partnering with CM-Alliance to host your testing tabletop exercises include;
- Confidence: Know that your existing response plans are effective and fit-for-purpose.
- Compliance: Receive formal scoring for your tabletop exercise and demonstrate compliance to regulations and auditors.
- Non-disruptive & Zero Risk: Safely evaluate your plans, review your decisions and gauge the impact on your critical systems and clients.
- Enhanced & Interactive Learning: Realistic scenarios engage the stakeholders improving their learning and increasing retention of key lessons.
Our Approach to Cyber Incident Response Tabletop Workshops
We take a structured approach to planning and running our tabletop exercises and have a straightforward process.
- Fact Find: We start with gathering as much information about your business, its stakeholders and its critical assets.
- Scenario Planning: After assessing the inputs we move on to planning and outlining the scenario and follow that up with a dry-run with you.
- Cyber Crisis Tabletop Exercise (CCTE): During the tabletop exercise we facilitate the workshop and monitor the pace and substance of the discussions.
- Management Report: After the exercise we produce an objective and detailed analysis of the exercise and provide a formal maturity score.
The image below describes, step-by-step, how we approach our cyber testing workshops
Formal Maturity Report and Presentation:
After the tabletop exercise you receive a formal executive summary and report that contains:
- A formal assessment of the exercise on a scale of 1 -5, scored against 10 different areas.
- A score of your organisation’s breach-readiness for the cyber-attack scenario.
- Analysis of the existing processes, procedures and their effectiveness during the tabletop exercises.
We offer both management focused and technical tabletop exercises and recommend the following participants for both audiences:
- Staff responsible for making critical decisions.
- Staff who are either heads of their function and or fully understand how the department operates.
- For management exercises there must be representation from all functions like PR, communications, legal, HR, sales and marketing, to name a few.
- Technical staff who know the systems and processes.
If relevant, representatives from key service providers
Why Cyber Management Alliance Ltd:
We are one of the world’s leading independent cyber incident & crisis management authority offering advisory services, executive training and bespoke workshops in all aspects of cyber crisis management, incident planning, incident-response testing and tabletop exercises.
We are the creators of the internationally acclaimed UK-Government’s NCSC-Certified, Cyber Incident Planning and Response (CIPR) course and have trained attendees from organisations including the United Nations, UK Ministry of Defence, several UK Police Forces, NHS Trusts, European Central Bank, Swiss National Bank, Microsoft, Ernst and Young and many others.
As part of our Cyber Incident & Crisis Management training and workshops we offer: