Brief: Our client requested a cyber simulation exercise for their Crisis Management Team to stress test a DDoS attack on the network, followed by an insider threat scenario.
Industry: Telecommunications
Organisation Size: Large-scale enterprise
Project Duration: 3-hour simulation exercise
The primary objective of the cyber simulation for the crisis management team was to enhance their ability to respond effectively to a significant cyber incident. The simulation aimed to test and improve the team’s coordination, decision-making, and communication skills under pressure. It provided a realistic environment to evaluate existing incident response plans, identify gaps, and ensure that all members understand their roles and responsibilities. Additionally, the exercise aimed to foster a culture of resilience, enabling the team to manage the crisis swiftly, minimise operational disruptions, and safeguard organisational assets and reputation.
Conducting an in-person exercise presented challenges, particularly when dealing with a cyber incident that is largely technology-based. Additionally, the scenario needed to be technically plausible and required in-depth knowledge of the telecommunications environment. This was the crisis team’s second simulation, necessitating additional injects to enhance the exercise’s complexity and realism.
Extensive research was conducted with members from the network and IT teams to build a robust scenario. The simulation was conducted in two parts, designed to stress test the crisis team on various elements such as regulatory requirements, interaction with government cyber teams, social media and customer communications, internal communications, and the technical resolution of the incident. This comprehensive approach ensured the scenario was realistic and challenging, effectively testing the crisis management team’s readiness and resilience.