The Cyber Crucible

Realistic incident response exercises to prepare your organisation to face major incidents with confidence

Crucible

noun

/ ˈkru sə bəl /

  1. a ceramic or metal container in which metals or other substances may be melted or subjected to very high temperatures.

  2. a situation of severe trial, or in which different elements interact, leading to the creation of something new.

As the OG warrior-philosopher, Field Marshall Helmuth von Moltke, famously said -

No plan of operations extends with certainty beyond the first encounter with the enemy’s main strength.

In other words - we can’t predict much beyond the initial incident but we can, and must, prepare for it. Given that his wisdom is still taught in every military academy around the world, we think he was onto something there. We also believe the same idea extends to gunfights fought in cyberspace.

Information and facts are buried deep inside the noise of confusion. What’s unknown far outweighs what’s known. Lots of things need done but when, how and by whom?

The Cyber Crucible is a simulated information security incident tailored to your organisation’s specific risks and operating context. Cyber Crucible will test and develop leaders at every level in their ability to think clearly under pressure, communicate clearly amidst the confusion and restore normal operations as effectively as possible.

Beyond the Cyber Crucible

Improved collaboration

An effective response to a major cyber incident calls for all levels of management to fulfil their role and trust that others will do the same.

That trust doesn’t come about by accident or executive edict - it’s developed over time and through hard-won experience.

Cyber Crucible helps build effective working relationships between executive management and incident managers to ensure that everyone is working the problem rather than becoming part of it.

Better decision-making

The key to making sound decisions under stress is to recognise that under stress, we don’t make sound decisions.

Through the process of stress inoculation, Cyber Crucible allows management at every level to acquire, rehearse and apply the skills of incident response in a graduated, controlled and safe environment where mistakes are simply a learning experience and positive feedback reinforces the use of effective techniques.

Increased confidence

A robust and effective incident response plan is a crucial part of any cyber defence strategy but needs to be tested to be effective.

Incident Response Teams walk away from a Cyber Crucible with a new-found confidence - not just in both themselves but also in the ability of executive management to support them. Conversely, executive management learns how best to create the conditions for the incident response team to perform at their peak.