Cyber crisis exercise
Facing the challenges of the consequences of a successful cyber attack, improving cyber resilience.
Facing the challenges of the consequences of a successful cyber attack, improving cyber resilience. Test your organization and prepare your teams to deal with a cyber crisis.
An analytical approach to meet the following challenges:
- Cyber attacks target all businesses and can create major crises that the best-prepared will survive and turn into opportunities to demonstrate their resilience.
- How will you mitigate the impact and manage the situation when you are hit?
- Are your decision/command chains and operational staff ready to deal with a real attack?
Prepare the cyber crisis exercise
- Select the methods to be used according to your level of maturity: type of exercise (tabletop, simulated with stimuli, etc.), timing and intensity, elements to be tested (alert, management, exit, etc.)
- Determine the objectives to be tested during the exercise in order to evaluate the strong points and areas for improvement (communication, legal requirements, documentation, organization of the crisis unit, etc.)
- Create a customized scenario, according to your priorities, your environment, your feedback… The exercise must be realistic!
- Develop the scenario with our crisis management experts and our CERT Almond experts
- Prepare the tools: timeline,
stimuli, animation support…
Conduct the cyber crisis exercise
- Make participants aware of cyber crisis management before the crisis exercise to ensure their level of knowledge and their involvement in the exercise.
- Gamify & mobilize: put the participants in favourable conditions thanks to ice breakers.
- Facilitate the exercise to put the players in a situation, respect the
timeline prepared beforehand and execute the prepared stimuli (phone calls, emails, video, tweet…)
- Observe the players by focusing on the objectives of the exercise.
The observer will note observations in terms of organization (logistics,
communication, use of tools, etc.), processes (alerts, decisions made, people in charge, etc.), behaviors (dominant, absent, anticipatory, etc.).
Analyze and improve
- Consolidate feedback from the participants on the hot and cold issues (questionnaire).
- Write a report presenting the strong points of the crisis management and the areas for improvement.
- Formalize concrete technical and organizational actions
to increase cyber resilience.
- Present proposals for increasing the complexity of future crisis
exercises. The crisis exercises must be part of a global approach to capitalize on and progressively learn from all aspects of crisis management.