We test emergency plans for suitability
Incident Drill
feel the crisis
Experience shows that untested emergency plans are only partially useful. The crisis must be rehearsed to verify if what is written actually works. Documentation is only the first step. That's why we conduct the test: Regular crisis exercises using the table-top method. You need to experience it for it to be applicable.
Security incident testing is tailored to target groups
We cluster two areas
Technical Crisis Exercise
We challenge IT teams and practice the worst-case scenario with relevant stakeholders.
Organizational Crisis Exercise
Crisis team - please assemble. We have a full encryption situation. How do we proceed?
It doesn't always have to be full encryption
Immediately check critical events
Our retainer offers you the possibility of reassurance. Therefore, it's better to contact our expert team once too often than too little. We examine critical events in detail and compile a final report through the analyzed artifacts. This transparently documents exactly what happened and the resolution of the alert. Our Incident Retainer comes in two variants:
Hello, IT Team
Technical
Crisis Exercise
Of course, we begin with a detailed preliminary discussion where we coordinate the scenario and all relevant details with IT management. In this context, there is the possibility to adjust the scope or design specific exercise aspects according to your individual requirements. The topic areas can be focused on alerting, reporting, forensics, log-collecting, or defined differently. The scope is defined together.
The Crisis Team Meets
Crisis Exercise
The organizational crisis exercise for the crisis team aims to improve the response capability and cooperation of the crisis team in a scenario of a serious IT security incident. Participants should learn effective action in such situations and identify weaknesses within the organization. Here we outline a detailed crisis scenario. Participants are introduced to this scenario and must deal with questions from real incidents. Topics include emergency operations, communication, legal aspects, or emergency plans.
This is how we achieve sustainable development
in both cases
After the crisis exercises, we conduct detailed lessons learned meetings. Here, the results are thoroughly discussed, insights are gathered, and recommendations for future measures are derived for the company. Our goal is to improve IT security and the company's incident response capabilities, prepare for possible crisis situations, and uncover current vulnerabilities.
Frequently Asked Questions
