Information Security Professional with both offensive and defensive experience. CISSP, CISM, CEH, and OSCP certifications. Seeking to share my experiences and secure organizations to the best of my ability, regardless of the environment.
Specialties: Information/Cyber Security, Cloud Security, penetration testing, SIEMs (ELK, Graylog), DevOps, DevSecOps, policy creation/design, BC/DR, leadership, management, architecture, and process improvement.
Live Gamified Tabletop Exercise Session
A traditional tabletop exercise (TTX) involves gathering various teams from around the company and running through your disaster recovery (DR) plan. Normally these exercises will start with a disaster such as a ransomware outbreak, fire in your main data center, etc. Teams have built plans to deal with such situations, and a TTX is intended to run through these scenarios to ensure that the plans meet the need. However there is a flaw - teams always seem to succeed. This constant success is known as following the happy path, and it is incredibly detrimental to the effectiveness of your plans. Disasters rarely follow a “happy path”, so why should your TTX?
EliteSec has taken the idea of a tabletop exercise (TTX) and gamified it. By forcing the team to roll a die depending on their choices, we can introduce a sense of randomness into the exercise. A router isn’t functioning? Roll a die to see if it’s because of a loose cable or if the router itself has burned out. That backup you thought would work just fine? It fails when you try to recover from it.
Join us in this live session as John leads a group of participants through a live session of a gamified tabletop exercise.