Embark on a journey of strategic planning and preparedness as we explore the nuances of conducting tabletop exercises effectively. Our narrative unfolds with a discussion on the optimal approach to conducting these exercises, whether as a single comprehensive session or broken down into two parts. The decision to break it into two steps serves as a prelude to a deeper exploration, allowing for a more thorough examination of responses and templates. Join us as we delve into the strategies for maximizing the effectiveness of tabletop exercises, ensuring that real insights and readiness emerge from these sessions beyond mere preparedness.




Here is the verbatim discussion:

Then we decided that we're going to meet once more and go deep so what we did was it was like a Prelude to the next exercise which is where we are going to go deep so what we kind of did was instead of doing it in one go we decided to do it in two steps so Dan what had been your experience like typically do you suggest like go for like this a a single round exercise or do you think sometimes breaking it into two parts is interesting any thoughts on how to make it very effective so that some real stuff come out of it so our goal had been not just to kind of be mentally prepared but also to create those responses and to create those templates so that out of that exercise we have some real Readiness apart from the kind of preparedness from the kind of thinking perspective Etc but get all these things written down so what's your thought on that in terms of doing it uh as a single exercise or breaking it down yeah most of the times I've seen it done um again most of my I I I have been a part of couple in the private sector.


Highlights :

Strategic Planning for Tabletop Exercises: Our exploration begins with a deliberation on the structure of tabletop exercises, with a focus on whether to conduct them as a single session or in two parts. This decision is informed by the desire to not only be mentally prepared but also to create tangible responses and templates for future reference.

Optimizing Effectiveness: Delve into the considerations for maximizing the effectiveness of tabletop exercises, emphasizing the importance of generating real insights and readiness. By breaking the exercise into two steps, organizations can delve deeper into responses and templates, fostering a more thorough understanding of potential scenarios and responses.


 As our exploration draws to a close, we are reminded of the importance of strategic planning and preparedness in conducting tabletop exercises effectively. Whether conducted as a single session or broken down into two parts, these exercises serve as valuable tools for enhancing organizational resilience and readiness. Join us in embracing the principles of strategic planning and preparedness as we navigate the dynamic landscape of cybersecurity and crisis management, empowered by the insights gained from thoughtful deliberation and collaborative engagement.



Dan Lohrmann is an esteemed cybersecurity expert and Field Chief Information Security Officer (CISO) for Presidio, celebrated for his impactful career across both public and private sectors. With beginnings at the National Security Agency and roles at Lockheed Martin and ManTech, he has been recognized as CSO of the Year among other accolades. Dan is also a prolific author and speaker, sharing insights on cybersecurity and technology modernization through his award-winning blog and publications.



Bikash Barai
is credited for several innovations in the domain of Network Security and Anti-Spam Technologies and has multiple patents in USPTO. Fortune recognized Bikash among India’s Top 40 Business Leaders under the age of 40 (Fortune 40-under-40).Bikash is also an active speaker and has spoken at various forums like TiE, RSA Conference USA, TEDx etc.

Earlier he founded iViZ an IDG Ventures-backed company that was later acquired by Cigital and now Synopsys. iViZ was the first company in the world to take Ethical Hacking (or Penetration Testing) to the cloud.






E-mail me when people leave their comments –

You need to be a member of CISO Platform to add comments!

Join CISO Platform

RSAC Meetup Banner

CISO Platform

A global community of 5K+ Senior IT Security executives and 40K+ subscribers with the vision of meaningful collaboration, knowledge, and intelligence sharing to fight the growing cyber security threats.

Join CISO Community Share Your Knowledge (Post A Blog)