Exercise in a Box is an online tool from the NCSC which helps organisations test and practise their response to a cyber attack.
It is completely free, and you don’t have to be an expert to use it. The service provides exercises based on the main cyber threats, which your organisation can do in your own time, in a safe environment, as often as you want. It includes everything you need for setting up, planning, delivery, and post-exercise activity, all in one place.
With the rise of ransomware attacks, organisations must be prepared in case they suffer an attack. Effectively securing an organisation can be difficult as you are only as secure as your weakest link. With the ever-changing face of cyber security, it is difficult to prepare for possible attacks.
The aims of this exercise are as follows:
- Understand how your organisation is prepared to deal with phishing attacks.
- Recognise how the configuration of your user accounts plays a major role in your defences.
- Gauge how effectively you can recover data and resume operation after a cyber-attack.
- Build trusted relationships and develop shared understanding between key stakeholders.
- Prepare and train key staff to consider what risks they are exposed to.
- Operate in a no-fault environment to check and test cyber security defences and capabilities.
Register at the Cyber and Fraud Centre website
*If you are a private sector organisation and interested in attending an Exercise in a Box session, send an email to eib@cyberfraudcentre.com and they will get in touch with you