But it's not always easy to plan and conduct a cyber tabletop exercise internally. You might either find yourself at a loss during the planning stage or you may struggle with achieving meaningful outcomes. This is why we have created this 7-hour Cyber Crisis Tabletop Masterclass, designed and delivered by the world's #1 cyber security drill facilitator.
In this Tabletop Masterclass, not only will you learn the theory of how to conduct a tabletop exercise, you'll also gain essential skills and learn how to apply the knowledge to plan, produce, and facilitate effective and highly engaging tabletop exercises. We show you how to conduct a tabletop exercise, from defining objectives and building realistic scenarios through to facilitation, evaluation and post-exercise improvement activities.
The target audience for this Masterclass is for anyone who wants to improve their organisation's crisis preparedness and cyber resilience. Some job roles that will benefit from this special training include:
In this Masterclass on How to Conduct a Tabletop Exercise, you’ll learn how to:
After the completion of this course, you should be able to:
Evaluate the effectiveness of your tabletop exercise against key metrics of engagement, participation, decision-making, awareness of roles and responsibilities etc.
Drive deep and meaningful discussions around cyber incident response with the attendees
Use data from the tabletop session to improve existing Incident Response playbooks
Produce and deliver meaningful debrief sessions focussed on lessons learned
Speak to us if you need a practical tabletop exercise guide or expert support to plan, produce and conduct cyber drills for your organisation.
Amar Singh has a long history and experience in data privacy and information security. Amar has served as CISO for various companies, including News International (now News UK), SABMiller, Gala Coral, Euromoney and Elsevier. Amongst various other activities, Amar is a Global Chief Information Security Officer and Trusted Advisor to a number of organisations including a FTSE100 firm, and is chair of the ISACA UK Security Advisory Group. He also founded the not-for-profit cybersecurity service for charities, Give01Day.
.jpg?width=720&height=163&name=Amar_Singh_CISO%20(1).jpg)
Amar has the highest integrity and is trusted by FTSE100 companies with some of the most sensitive commercial information. He has been involved with highly sensitive forensic investigations.
He has the ability to deal with both technically-astute, board-level executives and lead an organisation's information security direction. Apart from his experience and abilities, Amar holds a number of industry-recognised certifications, such as ISO 27001 Certified ISMS Lead Implementer, MoR, CRISC and CISSP certification.
Amar is an industry-acknowledged expert and public speaker and is regularly invited to speak and share his insights by some of the largest and most respected organisations in the world including The BBC, The Economist’s Intelligence Unit, The Financial Times, SC Magazine, InfoSec Magazine, Computer Weekly, The Register and the AlJazeera English Channel.

We pride ourselves on providing an exceptional service to our clients, but you don’t just have to take our word for it. Read what our clients have to say about our Cyber Tabletop Exercise Workshop.
- Mid Ulster District Council
- Northern Ireland Civil Service
Stranmillis University College - Queen's University Belfast
Newry - Mourne and Down District Council
- Causeway Council
Want more information on the Cyber Tabletop Exercise Masterclass & our Cyber Crisis Tabletop Exercise services? Book a no-obligation discovery call with one of our consultants.
The Cyber Attack Tabletop Exercise Masterclass is a two-day, instructor-led training programme that teaches you how to plan, produce and facilitate your own cyber crisis tabletop exercises in-house. Designed and delivered by one of the world’s most experienced cyber drill facilitators, it combines the theory with the practical skills needed to run engaging, effective exercises for executive, operational and technical audiences — and includes an extensive set of ready-to-use templates and resources.
To create an effective cybersecurity tabletop exercise, organisations should define clear exercise goals, identify the right participants, develop realistic attack scenarios, prepare discussion injects, facilitate structured conversations, evaluate responses, and document lessons learned to improve future preparedness.
A successful tabletop exercise includes clear objectives, realistic scenarios, active stakeholder participation, skilled facilitation, meaningful discussions, performance evaluation, and actionable recommendations for improvement.
The Masterclass is ideal for anyone responsible for improving their organisation’s crisis preparedness and cyber resilience, including Business Continuity Managers, Cyber Risk Managers, Emergency Planners, IT and Project Managers, CISOs and Heads of Information Security, IT Security and Cybersecurity Managers, and Heads of Security Operations. It suits both newcomers and experienced practitioners who want a proven, repeatable approach.
No. While cybersecurity or risk management experience is beneficial, the Masterclass is designed to provide a structured approach to planning, producing and facilitating effective tabletop exercises for both new and experienced practitioners.
Every attendee receives a comprehensive library of professionally designed resources to run their own exercises immediately. The collateral includes a Terms of Reference (ToR) template; preparation, production and delivery checklists; 5 editable tabletop scenario PowerPoint templates; a Facilitator’s Guide, a detailed Participant’s Guide and a detailed Observer’s Guide; report templates with four ready-made exercise templates (Ransomware, Executive, Operational and Technical); a question bank; and a Top 30 Tabletop Scenarios pack with suggested threats. Attendees also receive a free one-hour consulting session reviewing their current tabletop approach, a free cursory review of their existing incident response plan, a 50% discount on an Executive Briefing & Awareness Session, and further discounts on our Cyber Crisis Tabletop Exercise services.
The Masterclass is designed and delivered by Amar Singh, a globally recognised cyber tabletop facilitator who has planned and run over 400 tabletop exercises for organisations worldwide. Amar is a former CISO for major organisations including News UK, SABMiller, Gala Coral, Euromoney and Elsevier, chairs the ISACA UK Security Advisory Group, and holds CISSP, CRISC, MoR and ISO 27001 Lead Implementer certifications. Cyber Management Alliance is also the creator of the UK Government’s NCSC Assured incident response training and has trained over 750 organisations across 38 countries.
The Masterclass is a two-day programme delivered privately and internally for your organisation, so the content, scenarios and discussion can be tailored to your team, sector and risk profile. It is not offered as a public or open course — contact us to arrange a session for your team.
The Cyber Attack Tabletop Exercise Masterclass is not currently NCSC Assured or formally certified. However, all attendees receive a certificate of attendance on completion. It is delivered by the same team behind Cyber Management Alliance’s NCSC Assured incident response courses, so it reflects the same depth of real-world expertise.
Participants learn how to build exercises around ransomware attacks, data breaches, phishing campaigns, insider threats, supply chain attacks, cloud security incidents and other cyber crisis scenarios relevant to their organisation. The course also includes a Top 30 Tabletop Scenarios pack with suggested threats to draw from.