Tabletop & Simulated Exercises

Who We Are
- - Our Company
    Our mission is simple, our vision is clear, and our values are strong.
- - Our Team
    Our people are our greatest asset — they will be one of yours as well.
- - Our Capability
    Our proven methodologies will tackle your most complex challenges.
- - Our Clients
    We are a nationwide trusted partner to the public and private sectors.
- - Awards & Other News
    We are constantly on the move – check out our latest news and accolades.
- - Cybersecurity Articles
    Our experts share their cybersecurity knowledge and experience.
How We Work
What We Do
- - Implementation & Advisory
    Develop and implement sustainable security strategies
  - Risk Management
  - Governance & Cyber Program Development
  - Third-Party Security
  - Privacy & Data Protection
- - Assessment & Compliance
    Anticipate and alleviate risks that can threaten your business
  - Audit Readiness
  - Penetration Testing
  - Vulnerability Assessments
  - Security Assessment & Authorization
- - Incident & Threat Management
    Prevent, manage and recover from security incidents
  - Data Breach Readiness
  - Tabletop & Simulated Exercises
  - Incident Response
  - Threat Hunting
- - Security Architecture & Engineering
    Build, deploy and monitor effective cyber safeguards
  - Cloud Security
  - Continuous Monitoring
  - Business Continuity & Disaster Recovery
  - Enterprise Mobility
Contract Vehicles
Careers
Contact

Assurit’s Tabletop and Simulated Exercise services help organizations test their incident response process to determine whether it is effective and how it can be improved before an actual incident occurs.

Understanding Your Profile

As part of every engagement we conduct an on-site workshop with key individuals and introduce evolving scenario injects based on known attacker behavior, tactics and techniques. This helps us develop an understanding of your organization’s threat profile, operational environment and specific areas of concern.

Preparedness Evaluation

Assurit can help your organization conduct quick, efficient, non-invasive evaluations of your readiness in case of an incident. We will identify gaps between documented and expected responses and actual behavior and provide recommendations for improvement informed by real-world incident response best practices.

Compliant Approach. Real-world Scenarios.

Our tabletop and simulated exercise methodology is based on guidelines from NIST SP 800-61. This guidance, tailored with our experience gained in real-world breach response engagements, will enable your organization to gain practical experience in breach response by exposing you to existing and emerging threat actors, as well as their rapidly changing tactics, techniques and procedures.

threats
tactics
techniques
procedure

Assurit Tabletop and Simulated Exercises Services

Our Tabletop and Simulated Exercises engagements include:

Scenario Development

Assurit understands that the best scenarios are the ones that present enough information and clues that make it appear as a real incident rather than a made up one. The most interesting exercises might chain together as the incident plays through. Let us help you design your scenario in a way that lets your team discover gaps and issues during the engagement.

Tabletop Exercise

In a discussion-based tabletop exercise, Assurit can facilitate staff discussion on their roles and responses in hypothetical situations. A discussion-based tabletop exercise is a great starting point because it doesn’t require extensive preparation or resources. Its purpose is primarily to test your team’s understanding of their incident response roles.

Simulation Exercise

Assurit can help you test your organization’s incident response processes through a live walk-through that has been highly choreographed and planned. This exercise allows team members to experience how events actually happen in semi-real time, helping them better understand their roles.

Playbook Development

Assurit can help you develop and document your incident response playbook – which essentially ensures that everyone in your organization is on the same page, knows what their role is, and will execute processes the same way in the event of an actual incident.

Executive Briefings

As part of each engagement, Assurit will provide an executive briefing on lessons learned from the exercises – which includes a summary of how participants worked with the organization’s incident response plan, communications plan and escalation procedure.

Report and Actions Plan

We always provide a post-action report with a timeline of events, detailed analysis of participant and stakeholder activities with strategic and tactical recommendations for improving detection, response, containment and remediation.