Blog

What is a Tabletop Exercise and Why is it Valuable? – An interview with Aaron Wheeler, Truvantis Security Consultant

August 18, 2023

In this interview with Truvantis CEO Andy Cottrell, Aaron Wheeler discusses conducting tabletop exercises and how his clients derive value. 

What is a Tabletop Exercise? 

It's a chance for clients to stress test environment policies and procedures. In our case, business continuity, and security incident response. But you really can do it for any major policy that you want to see in action.  

How do You Conduct a Tabletop Exercise? 

“You sit down and you're presented with a scenario. I develop a scenario based on what they say they should do in a certain situation, present them with that and have them work through it.” 

“I present clients with this situation and it gives them a chance to work through ideas, solutions and see where the problems are. It’s a safe environment to stumble, fall and have hiccups. I always think of Dungeons and Dragons. I get to play the Dungeon Master.“ 

Why Do Your Clients Like Doing Tabletop Exercises? 

“It's not life or death for them at that point. They can test things and learn in a safe environment. They go through the process, make changes, make it more efficient, effective and economical.” 

 

I often tell my clients, Murphy's listening, Tomorrow the unthinkable will happen. 

It’s not if you get hacked, it's when you get hacked.” 

 

 

 

Aaron Wheeler

CISATruvantis - Aaron Wheeler Photocard

Aaron Wheeler is a Security Consultant at Truvantis and has 10 years of Internal Audit experience. He is dedicated to helping clients understand cybersecurity requirements and architect their environments to support security by design. 

Aaron Wheeler is a Security Consultant at Truvantis and has 10 years of Internal Audit experience. He is dedicated to helping clients understand cybersecurity requirements and architect their environments to support security by design. 

 

Listen to the Full Interview  

For the full interview please visit The Truvantis Risk Radar YouTube channel or listen to the podcast

 

About Truvantis 

Truvantis is a security, privacy and compliance consulting firm providing best-in-class services to secure your organization's infrastructure, data, operations and products. 

At Truvantis, we've built security and privacy programs for organizations, large and small. We specialize in helping our clients improve their business resilience and manage their business risk by implementing testing, auditing and operating information security programs. 

Our world-class services include security testing and a wide range of flexible compliance and vCISO programs. Truvantis is also an authorized PCI DSS Qualified Security Assessor (QSA) Company. 

Contact Us

 

 

Related Articles By Topic

CISO vCISO Security Program

Contact Us
Contact Truvantis to schedule a Cybersecurity Workshop
Schedule a call
Contact Us

Recent Articles

Truvantis - Cybersecurity Maturity - One Size Does Not Fit All
PCI DSS, CIS Controls, Security Program, Privacy, ISO27001
Cybersecurity Maturity - One Size Does Not Fit All – Rick Folkerts

It's common knowledge that enterprise organizations need effective security, privacy and compliance programs to survive and grow. There are a handful of generic best practices but beyond that, cybersecurity programs must be tailored to...

Read more
The Silver Bullet Defense to Ransomware – by Andy Cottrell
Ransomware
The Silver Bullet Defense to Ransomware – by Andy Cottrell

In an era of cost-cutting, downsizing and generally insufficient budgets for everything, we are often asked, what is the one, main thing to do to protect against a ransomware attack? According to Statista, in 2022, there were 493.33 mi...

Read more
Cryptographic Agility – by Jeff Hall (the ’PCI Guru’)
Security Program
Cryptographic Agility – by Jeff Hall (the ’PCI Guru’)

With the advent of quantum computing, a new threat has been added to the information security mix. The threat is today’s secure cryptography may not be secure once quantum computers reach their potential. The threat to cryptography has...

Read more

info@truvantis.com

+1 (415) 422-9844

    © 2022 Truvantis, Inc All Rights Reserved.

    Privacy Policy    Terms of Service