Cyber Threat Seminars
Defined: Seminars are used to orient audiences to cyber security concerns and cyber threats, and are less interactive than the other exercise types.
Use Cases:
- Educating executives about Cyber Threats or major Cyber Security gaps/concerns
- Educating employees on sound cyber-security principals and the dangers of not using them
- Educating top-tier clients on what your company does to protect them from fraud/data theft
- Orienting teams to new technology
Cyber Planning Workshops
Defined: Interactive exercises engaging leaders/stakeholders, often with a cyber threat backdrop, that are focused on building or evolving a product.
Use Cases:
- Establishing cyber response responsibilities
- Building Cyber Response Plans
- Incorporating new technology into Cyber Plans
- Problem solving the impacts of specific changes to infrastructure, significant patches, or threats
- Validating the readiness of the organization against a specific threat
Tabletop Exercises
Defined: Scenario staged events where participants discuss how they would handle things (typically according to their response plans) as events unfold.
Most Use Cases use one or more Cyber Threat Scenarios to achieve one of the following:
- Validating Cyber Response Plans
- Interactive knowledge sharing
- Experiencing a Cyber Threat and response
- Exploring Business Continuity impacts
- Exploring Disaster Recovery impacts
- Simulating major cyber impacts (fraud, data breaches, ransomware, etc.)
Cyber Response Drills
Defined: Drills are Operations-based exercises that typically require interactive responses, either hands on keyboards or activating response bridgelines and pulling people in to deal with an incident.
Use Cases:
- Walking through a cyber response for new technology or new incident responders
- Practicing integrated response
- Responding to Red Team actions