A successful tabletop exercise gives the management team the assurance that your cyber incident response plans are indeed fit for purpose. You will have peace of mind knowing that your team will respond effectively in case of an actual crisis and your operations will be minimally affected.
Regular tabletop testing, simulation testing and business continuity planning are now regulatory obligations in certain industries and countries. Conducting regular operational tabletop exercises with us, helps you achieve compliance while ensuring the continued effectiveness of your incident response plans.
The tabletop exercise encourages participation from all stakeholders across different departments who are responsible for the operations of the organisation & will actually be responsible for Incident Response. This helps streamline communication & collaboration between different teams.
As the tabletop exercise is an interactive & real-life like process, it is able to hold the attention of and engage all participants. It encourages communication & leads to improved retention of the learning. This is specifically beneficial for the non-technical audiences for whom the Operational tabletop exercise is created.
The formal executive summary and report shared at the end of the exercise, shows you the areas that you need to improve upon immediately. It’s the perfect opportunity to identify gaps in your existing processes & procedures and bridge them for a much stronger cyber resilience posture.
The exclusive Operational Cyber Crisis Tabletop Exercise designed by Cyber Management Alliance is a unique blend of simulation exercises and review of the actions taken, in order to build a more robust response mechanism.
The Operational Team Cyber Security Drill largely rests on these three aspects:
Like every other course and workshop created by Cyber Management Alliance, the Operational CCTE workshop too is based on the guiding principle of “Keep it Simple!”. Here’s what’s so special and appealing about our Operations-focussed Cyber Attack Tabletop workshop:
Our Operational Security Training Exercises are conducted in a highly-engaging and interactive format, ensuring maximum participation and highly relevant output and constructive discussions.
Facilitated by deeply experienced professionals, the exercise is structured as a combination of scenario walkthroughs and deeply-engaging functional, operational and practical exercises.
Our cyber attack drills are based on deeply researched and well planned scenarios. The facilitator works closely with a representative from your organisation to create a scenario that is highly relevant and contextual and will hit home.
The exercise is injected with various inputs (or injects) from sources including, but not limited to up to date news, blogs, tweets, social posts, weather etc. to make it as real as possible.
We provide detailed and relevant reports to all clients including an Executive Summary and recommendations report that is shared at the end of the Tabletop Exercise. Our clients find this document and our recommendations extremely beneficial and useful.
The report ontains detailed inputs on the existing strengths and recommendations on the gaps that need to be plugged to ensure your business emerges as more cyber resilient post the exercise.
Cyber Management Alliance is the world leader in Cybersecurity Training & Consultancy. We are amongst the top independent cyber incident & crisis management authorities offering advisory services, executive training, and bespoke workshops in all aspects of cyber crisis management, incident planning, incident-response testing and tabletop exercises.
We are the creators of the internationally acclaimed UK-Government’s NCSC-Certified, Cyber Incident Planning and Response (CIPR) course and have trained attendees from organisations including the United Nations, UK Ministry of Defence, several UK Police Forces, NHS Trusts, European Central Bank, Swiss National Bank, Microsoft, Ernst and Young and many others.
Case Studies demonstrate how others have benefited from our Cyber Tabletop Exercises. We have numerous client case studies which demonstrate how these sessions have helped them optimise their handling of cyber incidents. Click the button below to check out some of our Case Studies.
Cyber Management Alliance specialises in Operational Cyber Attack Tabletop Exercises. Our Exercises are conducted under the guidance of the world's leading Cyber Tabletop Facilitator.
The video on the right encapsulates the USPs of our Cyber Crisis Tabletop Exercises. You will get a quick view of:
The Operations Team is, perhaps, the most critical component in your Incident Response puzzle. They have to manage the impact of a cyber-attack and ensure they respond effectively enough to keep the damage on business continuity as low as possible.
Operational Cyber Attack Tabletop Exercises help them get prepared to deal with a cyber-attack head-on and experience the heat of making critical decisions in a chaotic environment. They build muscle memory for the steps they're recommended to adopt as part of their response strategy. They also learn the legal and ethical implications of their decisions during cyber threats, aligning their crisis responses with regulatory compliance.
It sharpens the team's reflexes, decision-making, and collaboration, directly contributing to more coordinated, efficient responses to actual cyber threats.
Regular sessions, possibly quarterly or bi-annually, can keep your teams sharp, updated on the latest threat models, and familiar with evolving defence strategies. Regular practice of the Incident Response Plans, Ransomware Checklists and Communication Templates is imperative for an effective, coordinated response during an actual cyber event.
At Cyber Management Alliance, we spend considerable time in planning as this helps us create a bespoke scenario that's extremely relevant to your business. However, the specific number of hours depends on a variety of factors like the size of your organisation, how spread out your infrastructure is, involvement of third-parties etc.
First, it's important to remember that this isn't actually a test of individual knowledge and there are no wrong answers. It is a test of your overall organisational cyber resilience. The exercise seeks to identify what gaps currently exist in your security plans, processes and procedures. Of course, familiarity with these will help you get the most out of the exercise but it's not a memory test at all.
Frankly, this depends on the enormity of your operations. But generally speaking, 2-3 hours is sufficient for an intensive exercise with a debrief. Sometimes, we've spent over a day in Tabletop Exercises but that's not the norm.
Preparation is key to the success of an operations-focused cyber tabletop exercise. It's crucial to first identify the right participants/stakeholders. These participants should be briefed about the exercise to provide context and purpose. Establishing clear objectives and outcomes for the exercise is important - such as identifying gaps in responses, improving communication, or testing the effectiveness of established protocols. Next, all participants should be encouraged to reacquaint themselves with all relevant materials and documentation, including your organisation's current incident response plan. It's critical to set up a conducive environment for the exercise, free from interruptions. Finally, establish a feedback mechanism for post-exercise analysis, allowing your team to assess performance, reflect on lessons learned, and integrate those insights into a more robust cyber defence strategy.
Hybrid sessions are a mix of onsite and virtual sessions where a group of people is physically present in one location and several others are connected via MS Teams or Zoom.
We DO NOT recommend hybrid sessions (where some are remote and some are onsite) as they severely degrade the overall video and audio performance.
All other variables being equal, we recommend a remote session as, anecdotally, a majority of incidents happen during unearthly hours and a remote or virtual cyber drill helps simulate a real life incident.
We DO NOT recommend hybrid sessions (where some are remote and some are onsite).
Want more information on what is a Virtual CISO, Virtual CISO Services & Virtual CISO hourly rates? Book a no-obligation discovery call with one of our consultants.
The information on this page and related pages and documents is Copyright of Cyber Management Alliance Ltd. The VCC or Virtual Cyber Consultant term, other terms, information, concepts, ideas, workflows, processes, procedures and other content that directly or indirectly supports the VCC Service are Copyright of Cyber Management Alliance Ltd. Copyright 2022.