Автор: Robert Lelewski, John Hollenberger
Издательство: No Starch Press
Год: 2025
Страниц: 200
Язык: английский
Формат: pdf, epub
Размер: 10.1 MB
The complete start-to-finish guide for planning and delivering successful cybersecurity tabletop exercises.
Cybersecurity Tabletop Exercises, written by veteran security consultants Robert Lelewski and John Hollenberger, is an essential resource for cybersecurity professionals and anyone tasked with enhancing their organization’s incident response capabilities. This comprehensive guide to tabletop exercise planning and delivery offers practical insights, step-by-step instructions, and real-world examples to improve your team’s ability to prevent and respond to cyberattacks.
The book is divided into two main parts. In Part I: The Tabletop Exercise Process, you’ll learn:
Why you should perform tabletop exercises and what their organizational benefits are
Effective planning and logistics tips, including how to gain executive sponsor support
How to develop realistic scenarios, injects, and storyboards
Facilitation techniques to ensure active participant engagement
Evaluation methods and follow-up activities
The example scenarios in Part II include:
Technical tabletops covering phishing campaigns, ransomware attacks, and zero-day vulnerabilities
Executive-level exercises that focus on high-impact incidents
Cross-functional cases such as physical security breaches, social media compromises, and insider threats
With examples tailored for various roles, you’ll discover how to transform tabletop exercises from a mere compliance requirement into a powerful strategic preparedness tool. Whether you’re new to tabletop exercises or an experienced practitioner, this book provides proven insights to strengthen your organization’s cyber incident response capabilities and overall security posture.
“A must-read for anyone involved in cybersecurity incident response. It expertly covers all aspects of conducting tabletop exercises, from scenario development to delivery to evaluation, providing practical advice and examples. Get ready to design and execute impactful tabletop exercises with the help of this book!” - Jeffrey J. Carpenter, First Incident Response Hall of Fame Inductee
Who Should Read This Book and Why:
This book has several audiences in mind. The first is information security professionals and those in related roles who are tasked with creating and facilitating a tabletop exercise for their employer. These individuals might need help executing their organization’s first tabletop exercise, or they might want to improve their performance in an ongoing series of exercises. Moreover, the people tasked with developing these exercises most likely have other job responsibilities, so in many organizations, it is difficult to perform a tabletop exercise more than once a year, and those overseeing them may have little opportunity to become experts in the topic.
We also target information security consultants who serve as external resources for other organizations seeking to perform a tabletop exercise. Companies that provide information security services frequently receive requests for help creating and facilitating a tabletop exercise. Given our extensive background in information security consulting, we would be remiss if we didn’t include the lessons we’ve learned from the consulting side.
Finally, while we’ve approached the book with information security in mind, you could adapt much of the process we discuss to other facets of the organization. Non–information security exercises might evaluate the organization’s readiness for business continuity issues (such as the impact of a sustained power outage at an assisted care facility) or physical security events, for example.
Скачать Cybersecurity Tabletop Exercises