Tabletop Exercise:: Definition: Discussion-Based Event Where Personnel With Roles and

A tabletop exercise is a discussion-based event where IT personnel meet to discuss their roles and responsibilities during a simulated security incident. It can last from 2 to 8 hours depending on objectives. Tabletop exercises help evaluate preparedness, strengthen crisis response coordination, and validate policies and procedures. Effective tabletop design identifies a topic, scope, objectives, participants, and includes a facilitator, data collection, and debriefing. The process improves cybersecurity programs by identifying lessons learned after each exercise.

Uploaded by

markiv123

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

246 views2 pages

Tabletop Exercise:: Definition: Discussion-Based Event Where Personnel With Roles and

Uploaded by

markiv123

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

You are on page 1/ 2

Tabletop Exercise:

Definition: Discussion-based event where personnel with roles and

responsibilities in an IT department meet in a classroom setting or in
breakout groups to discuss their roles and responsibility during a
security event incident situation.
Duration: 2 hours to 8 hours depending on the audience, the topic
being exercised, and the exercise objectives.
Benefits of Tabletop exercise:
 Evaluate & Validate CSIRT preparedness.
 Coordinated decision making.
 Strengthen crisis preparedness.
Design Considerations for a Tabletop Exercise:
 Identify the Topic  Ransomware
 Determine the scope  Based on target audience (Roles &
Responsibilities) ISS CSIRT team & COOP.
 Identify Objectives  Validate CSIRT, Policies & Procedures,
Agency Interdependencies etc.
 Identify Participants  Facilitator (leading the exercise), Data
Collector (Records Information), Players (Assist Data Collector),
Support Staff (Technical support).
 Conduct the exercise  Conf room, participant guide, exercise
debrief.
 Evaluate the result  Prepare after action report, brief mgmt.
Tabletop Lifecycle:

Step1: Prepare & Plan

Step4: Improve Step2: Conduct Exercise

Cybersecurity Program

Step3: Identify Lessons

Learned

Six Tabletop Exercises FINAL
No ratings yet
Six Tabletop Exercises FINAL
11 pages
Tabletop Step by Step Guide
No ratings yet
Tabletop Step by Step Guide
26 pages
Cyber Crisis Tabletop Exercises Guide
No ratings yet
Cyber Crisis Tabletop Exercises Guide
2 pages
Tabletop Exercises
No ratings yet
Tabletop Exercises
8 pages
Simulation Tabletop Exercise For Incident Response
No ratings yet
Simulation Tabletop Exercise For Incident Response
32 pages
Ransomware Incident Response Plan Template: 1 Introduction, Policy and Organization
No ratings yet
Ransomware Incident Response Plan Template: 1 Introduction, Policy and Organization
3 pages
NIST Risk Management Case Study
No ratings yet
NIST Risk Management Case Study
3 pages
Information Security Management Guide
No ratings yet
Information Security Management Guide
27 pages
Domain 1 - Security & Risk Management
No ratings yet
Domain 1 - Security & Risk Management
89 pages
Incident Response Plan
No ratings yet
Incident Response Plan
91 pages
Cyber Security Incident Report: Electronic Physical
No ratings yet
Cyber Security Incident Report: Electronic Physical
1 page
FFIEC CAT App B Map To NIST CSF June 2015 PDF4 PDF
No ratings yet
FFIEC CAT App B Map To NIST CSF June 2015 PDF4 PDF
24 pages
Computer Security Activities
No ratings yet
Computer Security Activities
29 pages
Desktop Checklist-Systems Admins - 1
No ratings yet
Desktop Checklist-Systems Admins - 1
1 page
Cybersecurity Essentials for SMBs
No ratings yet
Cybersecurity Essentials for SMBs
48 pages
COEN 252 Computer Forensics: Incident Response
No ratings yet
COEN 252 Computer Forensics: Incident Response
39 pages
It Security Incidents Checklists
100% (2)
It Security Incidents Checklists
1 page
IT Disaster Recovery Plan - Ready - Gov
No ratings yet
IT Disaster Recovery Plan - Ready - Gov
7 pages
Incident Response Plan Template
100% (1)
Incident Response Plan Template
6 pages
Dragos TTX 1
No ratings yet
Dragos TTX 1
2 pages
Incident Response Plan
No ratings yet
Incident Response Plan
11 pages
InfoSec Incident Response Plan
100% (5)
InfoSec Incident Response Plan
12 pages
Model Policy On Security Awareness
No ratings yet
Model Policy On Security Awareness
3 pages
2016 Cyber Security Checklist For Organisations PDF
No ratings yet
2016 Cyber Security Checklist For Organisations PDF
5 pages
A CISO Handbook To Effective Leadership & The Art of Influencing People
No ratings yet
A CISO Handbook To Effective Leadership & The Art of Influencing People
16 pages
GRC Job Description
No ratings yet
GRC Job Description
2 pages
Incident Response Plan Guide
No ratings yet
Incident Response Plan Guide
5 pages
Security Awareness and Training Policy
No ratings yet
Security Awareness and Training Policy
3 pages
Dragos: Tabletop Exercise
No ratings yet
Dragos: Tabletop Exercise
2 pages
Security Pillar: AWS Well-Architected Framework
No ratings yet
Security Pillar: AWS Well-Architected Framework
46 pages
Content: Cross Functional Core Team Examples 3 Impact Area Overview 6 Sample Severity Matrix 7
No ratings yet
Content: Cross Functional Core Team Examples 3 Impact Area Overview 6 Sample Severity Matrix 7
5 pages
System Hardening Guide
No ratings yet
System Hardening Guide
1 page
WP Creating Maintaining Soc PDF
No ratings yet
WP Creating Maintaining Soc PDF
16 pages
Critical Windows Security Events
No ratings yet
Critical Windows Security Events
6 pages
Incident Response & SOC Strategies
No ratings yet
Incident Response & SOC Strategies
29 pages
Incident Response Standard
No ratings yet
Incident Response Standard
20 pages
Risk Analysis Template 05
No ratings yet
Risk Analysis Template 05
20 pages
A Incident Management Plan Template
100% (1)
A Incident Management Plan Template
51 pages
Server Checklist
100% (1)
Server Checklist
22 pages
Cybersecurity Incident Response Guide
No ratings yet
Cybersecurity Incident Response Guide
4 pages
Security Incident Response Plan HL
100% (1)
Security Incident Response Plan HL
6 pages
AIS Incident Response Procedure
No ratings yet
AIS Incident Response Procedure
33 pages
InfoSec Awareness & Threats 2024
No ratings yet
InfoSec Awareness & Threats 2024
7 pages
1.12 Establish and Maintain A Security Awareness, Education, and Training Program
No ratings yet
1.12 Establish and Maintain A Security Awareness, Education, and Training Program
4 pages
2014 05 07 Effective Log Management Booklet
No ratings yet
2014 05 07 Effective Log Management Booklet
10 pages
A Physical Security Guide To Nerc Cip Compliance
No ratings yet
A Physical Security Guide To Nerc Cip Compliance
25 pages
Perations Ecurity Olicy: Inspiring Business Innovation
No ratings yet
Perations Ecurity Olicy: Inspiring Business Innovation
20 pages
Cyber Security Operations
100% (1)
Cyber Security Operations
16 pages
Windows 2003 AD Security Baseline
No ratings yet
Windows 2003 AD Security Baseline
35 pages
SANS Security Awareness Maturity Model
No ratings yet
SANS Security Awareness Maturity Model
11 pages
Vendor Risk Assessment
No ratings yet
Vendor Risk Assessment
6 pages
Cyber Security Awareness Training: CVI Biomedical Informatics Core Facility
No ratings yet
Cyber Security Awareness Training: CVI Biomedical Informatics Core Facility
29 pages
Comptia It Security Toolkit
No ratings yet
Comptia It Security Toolkit
14 pages
Cis Ram For Ig1 v21.10
No ratings yet
Cis Ram For Ig1 v21.10
41 pages
Incident Handling
No ratings yet
Incident Handling
35 pages
CMA Cyber Incident Respons Plan Template Public
No ratings yet
CMA Cyber Incident Respons Plan Template Public
19 pages
CISM Model Questions
0% (1)
CISM Model Questions
12 pages
Cybersecurity for IT Leaders
No ratings yet
Cybersecurity for IT Leaders
31 pages
USG Risk Assessment Checklist
No ratings yet
USG Risk Assessment Checklist
7 pages
Cyber Tabletop Guide
No ratings yet
Cyber Tabletop Guide
7 pages