During a preparation meeting for incident response, the security manager wants to test the organization's incident response plan in a low-stress environment that will not interrupt production systems. The exercise will bring key stakeholders together in a conference room to talk through how they would respond step-by-step to a simulated ransomware attack. Which type of exercise is the manager planning?
A tabletop exercise is a discussion-based session in which participants verbally walk through the sequence of events in a hypothetical incident to validate roles, responsibilities, and decision-making without touching live systems. Functional and full-scale exercises are more hands-on and may simulate or actually mobilize resources, while a red-team penetration test is an adversarial assessment focused on technical exploitation rather than plan validation.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a tabletop exercise and how does it differ from other types of drills?
Open an interactive chat with Bash
What are the benefits of conducting a tabletop exercise for security teams?
Open an interactive chat with Bash
Who typically participates in a tabletop exercise?