Exercises
The amount of actual working days required for live exercise from initiation to review depends on scale and complexity of the exercise. The duration options on calendar days are presented below.
Set objectives, form and type, high-level scenario, participating organizations and establish planning group.
Specify participants, develop scenario and injects&events, prepare environments, set schedule.
On-site exercise.
Execute scenario and injects, counterplay, conduct incident handling, protect environment, report events and incidents, debrief.
Evaluate exercise that include:
Analyze collected findings and development areas, conduct after action review, and lessons learned.
All the exercises are held in our state-of-the-art cyber range. Realistic Global Cyber Environment (RGCE) is a fully functional live cyber range and functions the same way as the real digital world. Cyber Range contains fictional business sector specific organizations and can be extended to contain custom-made tailored environment to represent training audiences’ real-life production environment.
Tailored cyber exercises, scenario, and exercise environments are possible to create for single or multiple organizations. This sort of activity demands thorough planning, preparation, and evaluation for creating custom environments and exercises. The scale and scoping of the tailored environment is done case-by-case and objective is to represent organization’s most important networks, systems, business logic, and services for conducting live exercise. This kind of tailoring is done as a part of the exercise planning and preparation phase. During the planning the scoping and selection of certain aspects of company is evaluated with the customer.
Case: Air Navigation Services Finland Oy (ANS Finland) cybersecurity exercise in 2018
