Cyber Security Exercise Programs
Information security preparedness exercises are a mechanism to test an organization's communication, incident response, disaster recovery business continuity and security awareness.
Our tabletop exercises provide examples of threats from both cyber and physical realms and illustrate the impact of blended threats that combine both cyber and physical threats. Scenarios are developed based on real world, commonly shared security concerns, and are presented for real time resolution by the collective group of attendees. As the story unfolds, the events quickly escalate from day to day annoyances to a point where incident response ends, and business continuity, disaster recovery and public safety begin.
Exercises can be performed in several venues including industry, academic, city, community, state, national, and international levels. Each exercise is built around a series of scenarios which incorporate multiple events that are based on real world threats.
The results of security exercises help direct security communications, development, countermeasure deployment, and security training with appropriate focus and priority, and targeting the challenges unique to the participating communities.
With scenarios developed by real-world operational security personnel, focusing on problem resolution and mitigation, participants can expect to adapt the lessons learned and models presented for implementation in their own organizations.
Five Goals of Security Preparedness Exercises
Note: Linked items below provide additional resources on each topic.
 | FOSTER AWARENESS |
| Inform participants about current and emerging threats relevant to their organizations and communities. | |
| EDUCATE |
| Train participants on how to prevent, detect, respond to, and recover from both minor and major events. | |
| EXERCISE EXISTING PROCEDURES |
| Provide an opportunity for participants to practice their current incident response procedures in a controlled environment. | |
| EVALUATE COMMUNICATION EFFECTIVENESS |
| The surest way to evaluate communications effectiveness is to exercise
the ability and ensure that personnel understand who to contact during an incident. By examining and working through security vulnerabilities as a group, successful methods and best practices will cultivate an ideas that “raise the bar” for security standards practiced within the attending organizations and communities. | |
| FACILITATE SECURITY COMMUNITY NETWORKING |
| An important part of security is the ability to leverage partners, peers and other organizations, especially when incidents are not contained inside an organization’s traditional borders. |
