The beginning phase is an initial assessment of existing experience in dealing with crisis situations, a recap of previous incidents that happened in the past and other specific areas of concern. Further, we will examine what detection and response capabilities are in place to gauge the current maturity state.
The second phase is about identifying and evaluating business relevant, high-impact attack scenarios that are crucial for leadership and operations teams to understand and build up resilience for. Our teams will develop bespoke attack vectors targeting main business processes and critical data assets, both from the perspective of insider threats as well as external threat actors.
From a strategic management perspective it is vital to understand which specific XDR capabilities are important to prevent breaches. The third phase will focus on the strategic underpinnings of those capabilities and suggest what needs to be done to reach the target point.
Equally important as technological support is the right framework of operational processes and workflows. The fourth phase will focus on outlining what is required for rapid decision making, crisis containment and eradication.
As an optional phase, tabletop exercises can be conducted for bespoke crisis scenarios. These simulations serve multiple purposes: reinforcing and discussing the actions that would be taken in a particular crisis situation, sharpen the understanding of roles and responsibilities, test communication strategies and improve operational efficiency.
Tabletop exercises are run from the viewing angle of distinct audience groups, primarily executives and leadership teams as well as operational security defense teams.
We've created the following service for you.