Presentation is loading. Please wait.

Presentation is loading. Please wait.

Joint cyber exercises Charlie van Genuchten SIG-ISM meeting, Dublin

Published byJames Washington Modified over 6 years ago

Similar presentations

Presentation on theme: "Joint cyber exercises Charlie van Genuchten SIG-ISM meeting, Dublin"— Presentation transcript:

1 Joint cyber exercises Charlie van Genuchten SIG-ISM meeting, Dublin
February 22nd, 2017

2 Overview Introduction Crises: what are we talking about?
Needs and objectives Different kinds of exercises

3 Definition of cyber crisis
A cyber incident is an IT incident that disrupts the expected availability of services and/or provokes the unauthorised disclosure, acquisition and/or modification of information. A cyber crisis is "an abnormal and unstable situation in which strategic goals, reputation and reliability are threatened by a disturbance, intentional or unintentional, at the core of the targeted organisation." Let’s take a step back and first find out what we are talking about. Please raise your hand if you have experienced an incident with your NREN. Een paar eruit halen om meer te vertellen over hun incidenten. Who would say they have experienced a crisis? Een paar eruit halen om meer te vertellen over hun crises.

4 Dealing with crises Crisis team? Crisis management plan?
Crisis communication? Unknown?

5 Exercises can be used to
Validating policies, plans, procedures, training, equipment and/or inter- organizational agreements Testing ICT disaster recovery systems Clarifying and training personnel in roles and responsibilities Improving inter-organizational coordination and communications Identifying gaps in resources Improving individual preformance Identifying opportunities for improvement Providing a controlled opportunity to practice improvisation

6 Performance objectives can be
orientation/demonstration: simulating experience of an expected situation to increase awareness of vulnerabilities and the importance of effective action in response to the simulated conditions; learning: enhancing knowledge, skills, or abilities by individuals or groups with the goal of mastering specific competencies; cooperation: providing an opportunity for people to work together to achieve a common end result; experimenting: trying new methods and/or procedures with the intent of refinement; and, testing: evaluating a method and/or procedure to assess which components are sufficiently developed.

7 What are your needs and objectives regarding crisis management?
In groepjes van 3 of 4 uiteen om hierover te discussiëren. Na 10 minuten terugkoppelingen met needs and objectives

8 Exercise types Desk Check – A desk check is a method used to validate plans and procedures and any changes to them. This is usually conducted in conversation with the author of the plans and procedures. Tabletop exercise – a tabletop exercise covers all aspects of crisis management. All participants receive the same information in advance about the simulated crisis situation and their role. Distributed tabletop exercise – A distributed tabletop is a role-play exercise where participants play their usual role in the plans and procedures of a scenario. This exercise is similar in structure to a tabletop exercise, but there is no possibility for discussion. Command Post Exercise (CPX) 100 – In a CPX (sandbox exercise), a crisis is simulated without the use of emergency services, external environmental factors or players. The crisis teams deal with questions and orders in a realistic and evolving scenario. Red Team/Blue Team - In a Red Team/Blue Team exercise, the red team attacks the network or another important business service and the blue team tries to foil the attempt.

9 Exercise types Desk Check – A desk check is a method used to validate plans and procedures and any changes to them. This is usually conducted in conversation with the author of the plans and procedures. Tabletop exercise – a tabletop exercise covers all aspects of crisis management. All participants receive the same information in advance about the simulated crisis situation and their role. Distributed tabletop exercise – A distributed tabletop is a role-play exercise where participants play their usual role in the plans and procedures of a scenario. This exercise is similar in structure to a tabletop exercise, but there is no possibility for discussion. Command Post Exercise (CPX) 100 – In a CPX (sandbox exercise), a crisis is simulated without the use of emergency services, external environmental factors or players. The crisis teams deal with questions and orders in a realistic and evolving scenario. Red Team/Blue Team - In a Red Team/Blue Team exercise, the red team attacks the network or another important business service and the blue team tries to foil the attempt.

10

Download ppt "Joint cyber exercises Charlie van Genuchten SIG-ISM meeting, Dublin"

Similar presentations

How to Conduct an After Action Review

How to Conduct an After Action Review
Ensure the Disaster Housing Strategy is institutionalized throughout the jurisdiction Identify a process to update and maintain the Disaster Housing Strategy.

Ensure the Disaster Housing Strategy is institutionalized throughout the jurisdiction Identify a process to update and maintain the Disaster Housing Strategy.
CERT Program Manager: Training and Exercises

CERT Program Manager: Training and Exercises
Crises in Schools.  Increase knowledge of planning and preparing for school crises  Increase ability of schools to create and implement crisis plans.

Crises in Schools.  Increase knowledge of planning and preparing for school crises  Increase ability of schools to create and implement crisis plans.
Visual 3.1 Unified Command Unit 3: Unified Command.

Visual 3.1 Unified Command Unit 3: Unified Command.
Unit 8: Tests, Training, and Exercises Unit Introduction and Overview Unit objectives:  Define and explain the terms tests, training, and exercises. 

Unit 8: Tests, Training, and Exercises Unit Introduction and Overview Unit objectives:  Define and explain the terms tests, training, and exercises. 
PPA 573 – Emergency Management and Homeland Security Lecture 4c – Planning, Training, and Exercising.

PPA 573 – Emergency Management and Homeland Security Lecture 4c – Planning, Training, and Exercising.
TRAINING AND DRILLS. Training and Drills Ensure A comprehensive, coordinated, and documented program as an integral part of the emergency management program.

TRAINING AND DRILLS. Training and Drills Ensure A comprehensive, coordinated, and documented program as an integral part of the emergency management program.
Simulation Exercises Overview Activities designed to assess, enhance and evaluate preparedness.

Simulation Exercises Overview Activities designed to assess, enhance and evaluate preparedness.
Disaster Emergency Management BY: ELLIAS NARDINI INTERNATIONAL REPRESENTATIVE & GENERAL AGENT APPLIED TRAINING SOLUTIONS, LLC 8527 CHASE GLEN CIRCLE FAIRFAX,

Disaster Emergency Management BY: ELLIAS NARDINI INTERNATIONAL REPRESENTATIVE & GENERAL AGENT APPLIED TRAINING SOLUTIONS, LLC 8527 CHASE GLEN CIRCLE FAIRFAX,
National Incident Management System Introduction and Overview NIMS.

National Incident Management System Introduction and Overview NIMS.
Business Continuation Plan / Program Overview State CIO Council Meeting June 24, 2008.

Business Continuation Plan / Program Overview State CIO Council Meeting June 24, 2008.
Practical Information on Crisis Planning: A Guide for Schools and Communities U.S. Department of Education August 2004.

Practical Information on Crisis Planning: A Guide for Schools and Communities U.S. Department of Education August 2004.
Unit 5:Elements of A Viable COOP Capability (cont.)  Define and explain the terms tests, training, and exercises (TT&E)  Explain the importance of a.

Unit 5:Elements of A Viable COOP Capability (cont.)  Define and explain the terms tests, training, and exercises (TT&E)  Explain the importance of a.
“Building sustainable capabilities across all phases of Emergency Management in Kansas through selfless service” KDEM EMPG 2012 OVERVIEW 13 September 2011.

“Building sustainable capabilities across all phases of Emergency Management in Kansas through selfless service” KDEM EMPG 2012 OVERVIEW 13 September 2011.
Personnel Learning. Primary Reference Emergency Management Principles and Practices for Healthcare Systems, The Institute for Crisis, Disaster and Risk.

Personnel Learning. Primary Reference Emergency Management Principles and Practices for Healthcare Systems, The Institute for Crisis, Disaster and Risk.
Presented by: Meg Boyd The Blue Mountains Drinking Water System: DWQMS Overview.

Presented by: Meg Boyd The Blue Mountains Drinking Water System: DWQMS Overview.
Background, Purpose, and Value of Exercises. 9/11 has changed water system security requirements Continued training for intentional incidents is critical.

Background, Purpose, and Value of Exercises. 9/11 has changed water system security requirements Continued training for intentional incidents is critical.
2015 S TATE E LECTIONS C ONFERENCE T ESTING YOUR COOP June 10, 2015.

2015 S TATE E LECTIONS C ONFERENCE T ESTING YOUR COOP June 10, 2015.
ISO 14001 GENERAL REQUIREMENTS. ISO 14001 Environmental Management Systems 2 Lesson Learning Goals At the end of this lesson you should be able to: 

ISO GENERAL REQUIREMENTS. ISO Environmental Management Systems 2 Lesson Learning Goals At the end of this lesson you should be able to: 

Similar presentations

Ads by Google