During a preparation meeting for incident response, the security manager wants to test the organization's incident response plan in a low-stress environment that will not interrupt production systems. The exercise will bring key stakeholders together in a conference room to talk through how they would respond step-by-step to a simulated ransomware attack. Which type of exercise is the manager planning?
A tabletop exercise is a discussion-based session in which participants verbally walk through the sequence of events in a hypothetical incident to validate roles, responsibilities, and decision-making without touching live systems. Functional and full-scale exercises are more hands-on and may simulate or actually mobilize resources, while a red-team penetration test is an adversarial assessment focused on technical exploitation rather than plan validation.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are the key benefits of a tabletop exercise?
Open an interactive chat with Bash
How does a tabletop exercise differ from a functional exercise?
Open an interactive chat with Bash
Why wouldn't a red-team penetration test be used in this scenario?