当前位置:首页 > 报告详情

成功进行桌面练习.pdf

上传人: 鲁** 编号:615440 2025-03-03 29页 3.77MB

1、Emily Gladstone Cole emilygcberkeley.eduRunning a Successful Tabletop ExerciseEmily Gladstone ColeUC Berkeleyemilygcberkeley.eduEmily Gladstone Cole emilygcberkeley.eduAgenda1.Introduction(We are here)2.Planning(How to set goals and choose participants)3.Scenario Ideas(Some of the many sources for s

2、cenario ideas)4.Running(What to keep in mind during your Tabletop)5.Summary(Conclusions and wrap up)Emily Gladstone Cole emilygcberkeley.eduwhoamiUC Berkeley gradWorked for small startups,large startups,small companies,large companies,government agencies,and now UC Berkeley!Security Analyst in Infor

3、mation Security at UC BerkeleyStaff to two catsEnjoys performing light operaEmily Gladstone Cole emilygcberkeley.eduTabletop EssentialsA Tabletop Exercise is a talk-through of your Security Incident Response process using an example incident.Pick the Participants who will be there for the ExerciseCh

4、oose a Scenario that you want to work throughCome up with Prompts to ensure key points are addressedRun the Exercise with your chosen participantsReview and learn the same way you do for other IncidentsEmily Gladstone Cole emilygcberkeley.eduEmily Gladstone Cole emilygcberkeley.eduHow do you get to

5、Carnegie Hall?Emily Gladstone Cole emilygcberkeley.eduPlanning your ExerciseEmily Gladstone Cole emilygcberkeley.eduGoals of the ExerciseThis will determine a lot about the scenario etc.that you chooseYearly compliance exerciseHands-on run through of playbooksThought exercise in response to a scenar

6、io in the newsEnsuring external departments understand the processEmily Gladstone Cole emilygcberkeley.eduParticipantsTechnical StaffLeadershipEmily Gladstone Cole emilygcberkeley.eduParticipants can help define your ScenarioBuilding bridges with other technical teamsWalking through an incident resp

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
本文主要介绍了如何成功地进行桌面演习,以提高信息安全事件的响应能力。作者Emily Gladstone Cole是加州大学伯克利分校的网络安全分析师,她分享了自己在多个组织中进行桌面演习的经验。 桌面演习是一种通过模拟安全事件来测试和提高组织的安全响应能力的活动。文章提出了进行桌面演习的关键步骤,包括:1)选择参与者,2)选择场景,3)制定提示以确保关键点被覆盖,4)与选定的参与者运行演习,5)演习结束后进行回顾和学习。 在规划演习时,需要考虑演习的目标,这将决定你选择的场景等。演习的参与者可以是技术团队、领导层,或两者的结合。技术团队可以帮助定义场景,而领导层可以确保外部部门理解响应过程。 场景想法可以来自多个来源,包括新闻中的实际事件、相关机构的场景列表、自定义场景等。在运行演习时,需要保持灵活性,如果事情走向意外的方向,也要敢于即兴发挥。 作者还提到了使用AI来辅助桌面演习,例如,构建一个故事讲述器,或者使用AI来生成场景提示。最后,作者强调了在演习结束后进行回顾的重要性,以确定哪些方面做得好,哪些方面可以改进。 本文提供了丰富的参考资源,包括场景列表、调查报告和关于如何设计有效的桌面演习的指导。作者鼓励读者联系她以获取更多信息。
如何成功策划桌面演习? 桌面演习中如何运用场景创意? 如何通过桌面演习提升团队响应能力?
客服
商务合作
小程序
服务号
折叠