Skip to Main content Skip to Navigation
Conference papers

Understanding Collaborative Challenges in IT Security Preparedness Exercises

Abstract : IT security preparedness exercises allow for practical collaborative training, which in turn leads to improved response capabilities to information security incidents for an organization. However, such exercises are not commonly performed in the electric power industry. We have observed a tabletop exercise as performed by three organizations with the aim of understanding challenges of performing such exercises. We argue that challenges met during exercises could affect the response process during a real incident as well, and by improving the exercises the response capabilities would be strengthened accordingly. We found that the response team must be carefully selected to include the right competences and all parties that would be involved in a real incident response process, such as technical, managerial, and business responsible. Further, the main goal of the exercise needs to be well understood among the whole team and the facilitator needs to ensure a certain time pressure to increase the value of the exercise, and both the exercise and existing procedures need to be reviewed. Finally, there are many ways to conduct preparedness exercises. Therefore, organizations need to both optimize current exercise practices and experiment with new ones.
Document type :
Conference papers
Complete list of metadata

Cited literature [18 references]  Display  Hide  Download
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Wednesday, July 13, 2016 - 11:03:14 AM
Last modification on : Tuesday, February 23, 2021 - 7:24:06 PM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Maria B. Line, Nils Brede Moe. Understanding Collaborative Challenges in IT Security Preparedness Exercises. 30th IFIP International Information Security Conference (SEC), May 2015, Hamburg, Germany. pp.311-324, ⟨10.1007/978-3-319-18467-8_21⟩. ⟨hal-01345116⟩



Record views


Files downloads