Skip to Main Content
Cyber Incident Response Tabletop Exercises

Cyber Incident Response Tabletop Exercises

SKU: 5744
Format: Cyber Incident Response Tabletop Exercises
  • Rehearse your cyber incident response plans with GRCI Law’s exercises.
  • Highlights deficiencies and areas for improvement, and ensures your staff know their role in the event of an incident.
  • Significantly reduces the impact of an incident and the time needed to recover.

The Cyber Incident Response Tabletop Exercises are provided by IT Governance’s sister company GRCI Law Limited, a specialist in data privacy, cyber security, and legal and compliance advisory services.

This service is currently being updated. Please contact us for more information.

e-learning training options
For more information about this service or to get a tailored quote for your organisation, please enquire below and one of our experts will be in touch shortly.Enquire about this service

Rehearse your cyber incident response plans with GRCI Law’s exercises

Our consultant will develop tabletop exercises – bespoke to your organisation – focused on your current cyber incident response capability and your risks and concerns.

The exercises will test and engage staff from across your business to highlight deficiencies, advise on improvements and ensure that everyone knows what to do in the event of an incident.

Download the full service description here

Key features

Depending on your organisation’s objective(s), our consultant will provide the following support:

  On-hand expertise

A dedicated consultant will develop and guide the bespoke exercises for management and staff so that you can be confident your organisation can recover from an incident.

 Meet your obligations

Cyber incident response plans should be exercised at least annually to ensure they remain effective. Exercises also help ensure you meet any obligations, such as the PCI DSS (Payment Card Industry Data Security Standard), and the NIS Directive and Regulations (Network and Information Security Directive and Regulations).

 Report findings

At the conclusion of the exercises, our consultant will write a report that describes their observations, highlights gaps and issues encountered, and identifies areas for improvement.

  Good practice

This service is based on a combination of the good-practice cyber incident response framework developed by CREST and the international standard on incident management, ISO/IEC 27035.

Service offering

Experienced cyber incident responder: Cliff Martin

Cliff Martin profile picture

Cliff Martin heads the cyber incident response service within GRCI Law.

He began his career teaching computer systems and network technologies in further and higher-education institutions.

Cliff then worked in the defence industry, where his main areas of expertise were risk management and accreditation, incident management and response, and secure systems architecture and configuration.

His key qualifications include:

  • (ISC)2 Certified Information Systems Security Professional (CISSP®)
  • SANS GIAC Certified Incident Handler (GCIH)
  • SANS Global Industrial Cyber Security Professional (GICSP)
  • BCS Certificate in Information Security Management Principles (CISMP)
  • IBITGQ Cyber Incident Response Management Foundation (CIRM F)

Cliff understands the complexity of cyber security incidents and their potential impact on an organisation, its users and/or its customers.

Why GRCI Law?

Why choose GRCI Law?

  • Unlike other organisations, GRCI Law is a specialist legal consultancy, which only advises on data protection, privacy and cyber security.
  • GRCI Law’s team of qualified lawyers and data protection officers has decades of experience in privacy and information/cyber security compliance programmes and personal data solutions for high-profile organisations.
  • GRCI Law takes a strategic approach to assessing and managing your data privacy needs, aligning standards and best practices with your operational and business requirements.
  • As GRCI Law is a sister company of IT Governance, you have direct access to cyber security specialist expertise, if needed.
  • The GRCI Law team has experience with global multinationals, international banks, investment firms and leading law firms, healthcare providers, world-leading educational institutions, the European Council, and UK law enforcement organisations.


This website uses cookies. View our cookie policy.