Search
Close this search box.

Are you the victim of a security incident? Contact our CERT

Expertise

Cyber crisis exercise

Facing the challenges of the consequences of a successful cyber attack, improving cyber resilience.

Facing the challenges of the consequences of a successful cyber attack, improving cyber resilience. Test your organization and prepare your teams to deal with a cyber crisis.

An analytical approach to meet the following challenges:

  • Cyber attacks target all businesses and can create major crises that the best-prepared will survive and turn into opportunities to demonstrate their resilience.
  • How will you mitigate the impact and manage the situation when you are hit?
  • Are your decision/command chains and operational staff ready to deal with a real attack?

Our offer

Prepare the cyber crisis exercise

  • Select the methods to be used according to your level of maturity: type of exercise (tabletop, simulated with stimuli, etc.), timing and intensity, elements to be tested (alert, management, exit, etc.)
  • Determine the objectives to be tested during the exercise in order to evaluate the strong points and areas for improvement (communication, legal requirements, documentation, organization of the crisis unit, etc.)
  • Create a customized scenario, according to your priorities, your environment, your feedback… The exercise must be realistic!
  • Develop the scenario with our crisis management experts and our CERT Almond experts
  • Prepare the tools: timeline,
    stimuli, animation support…

Conduct the cyber crisis exercise

  • Make participants aware of cyber crisis management before the crisis exercise to ensure their level of knowledge and their involvement in the exercise.
  • Gamify & mobilize: put the participants in favourable conditions thanks to ice breakers.
  • Facilitate the exercise to put the players in a situation, respect the
    timeline prepared beforehand and execute the prepared stimuli (phone calls, emails, video, tweet…)
  • Observe the players by focusing on the objectives of the exercise.
    The observer will note observations in terms of organization (logistics,
    communication, use of tools, etc.), processes (alerts, decisions made, people in charge, etc.), behaviors (dominant, absent, anticipatory, etc.).

Analyze and improve

  • Consolidate feedback from the participants on the hot and cold issues (questionnaire).
  • Write a report presenting the strong points of the crisis management and the areas for improvement.
  • Formalize concrete technical and organizational actions
    to increase cyber resilience.
  • Present proposals for increasing the complexity of future crisis
    exercises. The crisis exercises must be part of a global approach to capitalize on and progressively learn from all aspects of crisis management.

The benefits

Assess communication between stakeholders

Define the
roles and responsibilities of each actor

Assess the adequacy of existing processes and procedures

Identify the actions that impact the organization

Our value proposition

Animated sessions to promote skill development

Customized exercises, according to your
specific needs

In-house experts in information security and crisis management

Find the content of this page in PDF format:

Would you like more information about this offer?

Almond commits itself to ensure that the collection and processing of your data, carried out from the site https://almond.eu/, are in conformity with the General Data Protection Regulation (GDPR) and with the modified law n° 78-17 of January 6, 1978, relating to the protection of personal data. The information collected on this form is recorded in a file computerized by Almond, in order to answer the requests for information. You can access the data concerning you, ask for their correction or their deletion. You also have a right of opposition, and a right to limit the processing of your data (see cnil.fr for more information on your rights). You can exercise your rights by contacting Almond's Data Protection Officer at the following address: [email protected]. Your data will be kept within the European Union, in accordance with the regulations in force.