Exercises address real-world cyber scenarios, allowing organizations to assess their cyber resilience effectively. Here are some key elements of these exercises:
Reporting Confidence: By scoring individuals and teams during exercises, organizations gain valuable insights into their readiness for real cyber crises, enabling continuous improvement.
Exercising a Team of Teams: Encourage collaboration between different teams in an organization, including:
- Executive CMT (Crisis Management Team)
- Business and Functional Level CMT
- Security Operations
- Incident Response Team
Illustrative Scenario Outline: A sample scenario outline illustrates the flow of a cyber crisis exercise, including containment actions, engaging with attackers, external communication, unintended consequences, recovery, and restoration.
Hands-On Labs: Security teams are assessed using MITRE framework coverage against specific threat actor techniques – individuals can improve their skills through additional lab training.