Filter
Clear All
Categories
Tags
Learning Pathways
Capability
Teams/Roles
Regulations / Standards
Threats
Featured Microsimulations
Categories: Microsimulations,Featured Microsimulations
Tags: Foundational,Third-Paty Risk,Multiplayer,30 minutes,Geopolitical
Capability: Situational Awareness,Task Assignment
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Learning Tracks
Category: Learning Tracks
Tags: Multiplayer,CPS 230,Geopolitical,Invasion
Capability: Situational Awareness,Team Dynamics,Task Assignment
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Category: Learning Tracks
Tags: CPS 230,Geopolitical,Invasion,Multiplayer
Capability: Situational Awareness,Team Dynamics,Task Assignment
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Threats
Categories: Microsimulations,Threats
Sub-Category: Natural Disasters
Tags: Multiplayer,CPS 230,Invasion,Geopolitical
Capability: Situational Awareness,Team Dynamics,Task Assignment
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Categories: Microsimulations,Threats
Sub-Category: AI
Tags: CPS 230,Invasion,Geopolitical,Multiplayer
Capability: Situational Awareness,Team Dynamics,Task Assignment
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Microsimulations
Category: Microsimulations
Tags: 30 minutes,Multiplayer,AI,CPS 230,Cyber,Foundational,Gen AI Databreach
Capability: Communications,Incident Assessment,Impact Assessment,Situational Awareness,Task Assignment,Document Retrieval
Regulations / Standards: CPS 230,DORA,EU AI Act,GDPR,Operational Resilience Framework,ISO 27001
Threats: Artificial Intelligence,Cyber
Category: Microsimulations
Capability: Communications,Situational Awareness,Task Assignment,Threshold Tests
Regulations / Standards: CPS 230,DORA,Operational Resilience Framework
Threats: Artificial Intelligence,Cyber
Category: Microsimulations
Tags: Multiplayer,Ransomware,AI,Foundational,Cyber,30 minutes,CPS 230,Third-Paty Risk
Capability: Incident Assessment,Response Playbooks
Regulations / Standards: CPS 230,DORA,EU AI Act,Operational Resilience Framework
Threats: Artificial Intelligence,Conduct,Cyber,Third-Party Risk
Category: Microsimulations
Tags: Multiplayer,Gen AI Databreach,AI,Foundational,Cyber,30 minutes,CPS 230
Capability: Situational Awareness,Task Assignment,Document Retrieval
Regulations / Standards: CPS 230,DORA,EU AI Act,GDPR,Operational Resilience Framework,ISO 27001
Threats: Artificial Intelligence,Cyber
Category: Microsimulations
Tags: Modern Slavery,Multiplayer,Foundational,30 minutes
Capability: Incident Assessment,Situational Awareness,Task Assignment,Document Retrieval
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Conduct,Cyber,Supply Chain Disruption,Third-Party Risk
Category: Microsimulations
Tags: Multiplayer,Foundational,30 minutes,Systemic Racism
Capability: Impact Assessment,Response Playbooks
Regulations / Standards: CPS 230,DORA,EU AI Act,Operational Resilience Framework
Threats: Artificial Intelligence,Conduct,Third-Party Risk
Category: Microsimulations
Tags: 30 minutes,Ransomware,AI,Multiplayer,Cyber,Foundational,CPS 230,Third-Paty Risk
Capability: Impact Assessment,Situational Awareness,Stakeholder Management,Task Assignment
Regulations / Standards: CPS 230,DORA,EU AI Act,GDPR,Operational Resilience Framework,ISO 27001
Threats: Cyber
Category: Microsimulations
Tags: Third-Paty Risk,30 minutes,Geopolitical,Multiplayer,Foundational
Capability: Situational Awareness,Task Assignment
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Category: Microsimulations
Tags: CPS 230,Invasion,Geopolitical,Multiplayer
Capability: Situational Awareness,Task Assignment
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Categories: Microsimulations,Threats
Sub-Category: AI
Tags: CPS 230,Invasion,Geopolitical,Multiplayer
Capability: Situational Awareness,Team Dynamics,Task Assignment
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Category: Microsimulations
Tags: AI,Third-Paty Risk,Ransomware,Cyber,Foundational,Multiplayer,CPS 230,30 minutes
Capability: Communications,Incident Assessment,Impact Assessment,Situational Awareness,Task Assignment,Document Retrieval
Regulations / Standards: CPS 230,DORA,GDPR,Operational Resilience Framework,ISO 27001
Threats: Cyber,Third-Party Risk
Categories: Microsimulations,Threats
Sub-Category: Natural Disasters
Tags: Multiplayer,CPS 230,Invasion,Geopolitical
Capability: Situational Awareness,Team Dynamics,Task Assignment
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Categories: Microsimulations,Featured Microsimulations
Tags: Foundational,Third-Paty Risk,Multiplayer,30 minutes,Geopolitical
Capability: Situational Awareness,Task Assignment
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Category: Microsimulations
Capability: Response Playbooks,Situational Awareness,Task Assignment
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Cyber,Supply Chain Disruption,Third-Party Risk
Category: Microsimulations
Tags: Foundational,Multiplayer,CPS 230,30 minutes,Gen AI Databreach,AI,Cyber
Capability: Communications,Incident Assessment,Impact Assessment,Situational Awareness,Task Assignment,Document Retrieval
Regulations / Standards: CPS 230,DORA,EU AI Act,GDPR,Operational Resilience Framework,ISO 27001
Threats: Artificial Intelligence,Cyber
Category: Microsimulations
Tags: Cyber,Foundational,Multiplayer,CPS 230,30 minutes,Gen AI Databreach,AI
Capability: Communications,Incident Assessment,Impact Assessment,Situational Awareness,Task Assignment,Document Retrieval
Regulations / Standards: CPS 230,DORA,EU AI Act,GDPR,Operational Resilience Framework,ISO 27001
Threats: Artificial Intelligence,Cyber
Category: Microsimulations
Tags: Cyber,Foundational,Multiplayer,CPS 230,30 minutes,Gen AI Databreach,AI
Capability: Communications,Incident Assessment,Impact Assessment,Situational Awareness,Task Assignment,Document Retrieval
Regulations / Standards: CPS 230,DORA,EU AI Act,GDPR,Operational Resilience Framework,ISO 27001
Threats: Artificial Intelligence,Cyber
Category: Microsimulations
Tags: AI,Cyber,Foundational,Multiplayer,CPS 230,30 minutes,Gen AI Databreach
Capability: Communications,Incident Assessment,Impact Assessment,Situational Awareness,Task Assignment,Document Retrieval
Regulations / Standards: CPS 230,DORA,EU AI Act,GDPR,Operational Resilience Framework,ISO 27001
Threats: Artificial Intelligence,Cyber
Category: Microsimulations
Tags: AI,Foundational,Deepfake,Cyber,30 minutes,CPS 230,Third-Paty Risk,Multiplayer
Capability: Incident Assessment,Response Playbooks
Regulations / Standards: CPS 230,DORA,EU AI Act,Operational Resilience Framework
Threats: Artificial Intelligence,Conduct,Cyber,Third-Party Risk
Featured Microsimulations
  Event Phase Response Description Determine the protocols for sharing relevant information in a multi-team setup Scenario - Russia attacks Poland Amidst escalating international tensions, several missiles have struck the outskirts of Rzeszow, Poland, coinciding with a military offensive in Taiwan. This simulation focuses on the immediate aftermath in Rzeszow, where authorities face possible casualties and severe infrastructure damage. . Objectives 1. Increase awareness of the requirements and responsibilities across multiple teams 2. Validate protocols for gathering and sharing relevant information 3. Validate the authority for making critical response decisions
Categories: Microsimulations,Featured Microsimulations
Tags: Foundational,Third-Paty Risk,Multiplayer,30 minutes,Geopolitical
Capability: Situational Awareness,Task Assignment
Teams/Roles: Crisis Management Team,Communications,Strategic Risk Team
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Learning Tracks
The Operational Learning Track is a series of five Microsimulations designed for mid-level managers, Incident Response, and Operational teams. This track is designed to enhance crisis response capabilities and decision-making skills at an operational level. Summary
  • A series of 5 Microsimulations spread over 6-12 months, with each session lasting between 20 to 25 minutes.
  • Designed to refine plan and playbook validation across various teams.
  • Features Microsimulations covering key areas such as supply chain failure, generative AI data breaches, natural catastrophes, and physical security threats.
Microsimulations included in this track  
Session 1 Session 2 Session 3 Session 4 Session 5
Description Team Roles & Responsibilities Review the roles and initial responsibilities when responding to an event. Description Event Assessment, Situational Awareness & Internal Communications Review the steps and protocols around the impact assessment and communication protocols of the event. Description Stakeholder Management Determine the appropriate stakeholders for notification, based on the event scenario and impact assessment. Decsription Impact Assessment & Playbook Review Review business impact data and validate playbooks for managing disruptions to critical functions due to a third- party outage. Decsription Team Dynamics Review the coordination and response activities across multiple teams.
Third Party Outage Microsimulation
Scenario: Loss of Technology Scenario: Gen AI Data Breach Scenario: Ransomware Attack Scenario: Third Party Outage Scenario: Natural Catastrophe
Prolonged severe weather conditions have caused serious network issues, taking down ISP providers, including your own. Sensitive company information have been found on ChatGPT, but the situation worsens when highly confidential information is found on wormGPT. A dark and malicious version of chatGPT. Organizations worldwide, including yours, are facing a ransomware attack that demands cryptocurrency. Your network is offline, with no clear timeline for restoration. A cyber-attack has taken your critical vendor offline, leading to a widespread impact throughout your organisation. Your sites and the surrounding areas have been impacted by a natural catastrophe, leading to damage to your infrastructure and concerns for the safety and wellbeing of your staff.
Explore this Microsimulation Explore this Microsimulation Explore this Microsimulation Explore this Microsimulation Explore this Microsimulation
Category: Learning Tracks
Tags: Multiplayer,CPS 230,Geopolitical,Invasion
Learning Pathways: Operational Learning Track
Capability: Situational Awareness,Team Dynamics,Task Assignment
Teams/Roles: Crisis Management Team,Communications,Strategic Risk Team
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Contact: [contact-form-7 id="1521" title="Contact form"]
The Strategic Learning Track is a series of four Microsimulations designed for senior leaders. This track is designed to sharpen strategic decision-making abilities and prepare senior leaders to manage complex crises effectively. Summary
  • A series of four microsimulations spread over 6-12 months, with each session lasting between 25 to 30 minutes.
  • Focuses on scenarios that require high-level decision-making and strategic foresight.
  • Features Microsimulations on geopolitical risks, critical vendor management, and emerging threats like AI–generated deep fakes.
Microsimulations included in this track
Session 1 Session 2 Session 3 Session 4
Description Team Roles & Responsibilities Review the roles and initial responsibilities when responding to an event. Description Event Assessment Review the steps and protocols for the incident assessment and strategic communication of a critical event. Description Stakeholder Management Determine the appropriate stakeholders for notification, based on the event scenario and impact assessment. Decsription Situational Awareness & Team Dynamics Determine the protocols for sharing relevant information in a multi-team setup.
Scenario: AI Deepfake Scenario: Third Party Modern Slavery Scenario: Ransomware Attack Scenario: Geopolitical – China invades Taiwan
Your organisation grapples with a deepfake incident, reputational damage and governance breakdown triggered by an AI-driven cyber-attack. Your organisation grapples with potential reputational damage, legal consequences, and supply chain vulnerabilities due to a critical supplier's involvement in a tech modern slavery scandal. Organizations worldwide, including yours, are facing a ransomware attack that demands cryptocurrency. Your network is offline, with no clear timeline for restoration. A critical player in semiconductor manufacturing and supply, the Taiwan invasion could affect global trade, potentially destabilising financial markets through supply chain disruption and trade disturbances.
Explore this Microsimulation Explore this Microsimulation Explore this Microsimulation Explore this Microsimulation
Category: Learning Tracks
Tags: CPS 230,Geopolitical,Invasion,Multiplayer
Learning Pathways: Strategic Learning Track
Capability: Situational Awareness,Team Dynamics,Task Assignment
Teams/Roles: Crisis Management Team,Communications,Strategic Risk Team
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Contact: [contact-form-7 id="1521" title="Contact form"]
Threats
Event Phase Response Description Determine the protocols for sharing relevant information in a multi-team setup Scenario - China invades Taiwan A critical player in semiconductor manufacturing and supply, the Taiwan invasion could affect global trade, potentially destabilising financial markets through supply chain disruption and trade disturbances. Objectives 1. Increase awareness of the requirements and responsibilities across multiple teams 2. Validate protocols for gathering and sharing relevant information 3. Validate the authority for making critical response decisions
Categories: Microsimulations,Threats
Sub-Category: Natural Disasters
Tags: Multiplayer,CPS 230,Invasion,Geopolitical
Capability: Situational Awareness,Team Dynamics,Task Assignment
Teams/Roles: Crisis Management Team,Communications,Strategic Risk Team
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Contact: [contact-form-7 id="1521" title="Contact form"]
Event Phase Response Description Determine the protocols for sharing relevant information in a multi-team setup Scenario - China invades Taiwan A critical player in semiconductor manufacturing and supply, the Taiwan invasion could affect global trade, potentially destabilising financial markets through supply chain disruption and trade disturbances. Objectives 1. Increase awareness of the requirements and responsibilities across multiple teams 2. Validate protocols for gathering and sharing relevant information 3. Validate the authority for making critical response decisions
Categories: Microsimulations,Threats
Sub-Category: AI
Tags: CPS 230,Invasion,Geopolitical,Multiplayer
Capability: Situational Awareness,Team Dynamics,Task Assignment
Teams/Roles: Crisis Management Team,Communications,Strategic Risk Team
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Contact: [contact-form-7 id="1521" title="Contact form"]
Microsimulations
Event Phase Evaluate and Activate
Scenario - Third-Party Outage A cyber-attack has taken your critical vendor offline, leading to a widespread impact throughout your organisation.
Description Review business impact data and validate playbooks for managing disruptions to critical functions due to a third-party outage.
Objectives 1. Review and validate Business Impact data from the Business Continuity Plan / Playbook 2. Validate currency of critical functions, owners and dependencies 3. Review and validate first actions in Business Continuity Plans
[contact-form-7 id="15661" title="UPCP Inquiry Form"]
Category: Microsimulations
Tags: 30 minutes,Multiplayer,AI,CPS 230,Cyber,Foundational,Gen AI Databreach
Learning Pathways: Operational Learning Track
Capability: Communications,Incident Assessment,Impact Assessment,Situational Awareness,Task Assignment,Document Retrieval
Teams/Roles: Communications,Cyber Security Team,Incident Response Team
Regulations / Standards: CPS 230,DORA,EU AI Act,GDPR,Operational Resilience Framework,ISO 27001
Threats: Artificial Intelligence,Cyber
Contact: [contact-form-7 id="15661" title="UPCP Inquiry Form"]
  ResponsePhase sample Description Foster a deeper awareness of Important Business Service / Critical Operations Tolerance Thresholds against the backdrop of emerging threats Scenario - AI-Driven Biases Deepfake An AI system used in financial applications is found to exhibit racial and gender bias. Objectives 1. Assess Critical Operation Resilience 2. Test response protocols 3. Evaluate recovery strategies
Category: Microsimulations
Learning Pathways: OpRes Learning Track
Capability: Communications,Situational Awareness,Task Assignment,Threshold Tests
Teams/Roles: Communications,Cyber Security Team,Incident Response Team
Regulations / Standards: CPS 230,DORA,Operational Resilience Framework
Threats: Artificial Intelligence,Cyber
Contact: [contact-form-7 id="1521" title="Contact form"]
  Event Phase Response Description Review the roles and initial responsibilities when responding to an event Scenario - Ransomware Organizations worldwide, including yours, are facing a ransomware attack that demands cryptocurrency. Your network is offline, with no clear timeline for restoration. Objectives 1. Demonstrate awareness of the roles and responsibilities involved in responding to a critical event 2. Evidence knowledge of the first actions in an event 3. Verify key role alternates
Category: Microsimulations
Tags: Multiplayer,Ransomware,AI,Foundational,Cyber,30 minutes,CPS 230,Third-Paty Risk
Learning Pathways: Strategic Learning Track
Capability: Incident Assessment,Response Playbooks
Teams/Roles: Crisis Management Team,Communications,Incident Response Team,Strategic Risk Team
Regulations / Standards: CPS 230,DORA,EU AI Act,Operational Resilience Framework
Threats: Artificial Intelligence,Conduct,Cyber,Third-Party Risk
  Event Phase Roles and Responsibilities Description Review the roles and initial responsibilities when responding to an event Scenario - Gen AI Databreach Sensitive company information has been discovered on ChatGPT, but the situation worsens when highly confidential data surfaces on wormGPT.  This Microsimulation is designed to cultivate a deep understanding of the complex risks stemming from information security breaches and the spread of sensitive data across unauthorized networks. Objectives 1. Validate roles and responsibilities in responding to a Cyber Security event 2. Evidence documentation of roles and responsibilities for a Cyber Security Event 3. Verify role alternatess
Category: Microsimulations
Tags: Multiplayer,Gen AI Databreach,AI,Foundational,Cyber,30 minutes,CPS 230
Learning Pathways: Cyber Tactical Learning Track
Capability: Situational Awareness,Task Assignment,Document Retrieval
Teams/Roles: Communications,Cyber Security Team,Incident Response Team
Regulations / Standards: CPS 230,DORA,EU AI Act,GDPR,Operational Resilience Framework,ISO 27001
Threats: Artificial Intelligence,Cyber
  Event Lifecycle Evaluate and Activate Description Review the steps and protocols for the incident assessment and strategic communication of a critical event Scenario - AI Deepfake Your organisation grapples with potential reputational damage, legal consequences, and supply chain vulnerabilities due to a critical supplier's involvement in a tech modern slavery scandal. Objectives 1. Demonstrate proficiency with the Incident Assessment process 2. Demonstrate proficiency of the Impact Assessment process 3. Verify the strategic communication protocols
Category: Microsimulations
Tags: Modern Slavery,Multiplayer,Foundational,30 minutes
Learning Pathways: Strategic Learning Track
Capability: Incident Assessment,Situational Awareness,Task Assignment,Document Retrieval
Teams/Roles: Crisis Management Team,Communications,Cyber Security Team,Incident Response Team,Strategic Risk Team
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Conduct,Cyber,Supply Chain Disruption,Third-Party Risk
  Event Phase Response Description Review the roles and initial responsibilities when responding to an event Scenario - Systemic Racism A leading technology supplier finds itself at the center of a tech modern slavery scandal, with reported evidence of systemic racism. This Microsimulation aims to evaluate the risks and implications of continuing the partnership with the supplier or opting to sever ties, with a specific focus on assessing potential reputational impacts, legal ramifications, and supply chain vulnerabilities. Objectives 1. Demonstrate awareness of the roles and responsibilities involved in responding to a critical event 2. Evidence knowledge of the first actions in an event 3. Verify key role alternates
Category: Microsimulations
Tags: Multiplayer,Foundational,30 minutes,Systemic Racism
Capability: Impact Assessment,Response Playbooks
Teams/Roles: Crisis Management Team,Communications,Incident Response Team,Strategic Risk Team
Regulations / Standards: CPS 230,DORA,EU AI Act,Operational Resilience Framework
Threats: Artificial Intelligence,Conduct,Third-Party Risk
  Event Phase Evaluate and Activate Description Determine the appropriate stakeholders for notification based on the event scenario and impact assessment Scenario - Ransomware Organizations worldwide, including yours, are facing a ransomware attack that demands cryptocurrency. Your network is offline, with no clear timeline for restoration. Objectives 1. Increase awareness of the requirements and responsibilities across multiple teams 2. Validate protocols for gathering and sharing relevant information 3. Validate the authority for making critical response decisions
Category: Microsimulations
Tags: 30 minutes,Ransomware,AI,Multiplayer,Cyber,Foundational,CPS 230,Third-Paty Risk
Learning Pathways: Operational Learning Track
Capability: Impact Assessment,Situational Awareness,Stakeholder Management,Task Assignment
Teams/Roles: Crisis Management Team,Communications,Cyber Security Team,Incident Response Team,Strategic Risk Team
Regulations / Standards: CPS 230,DORA,EU AI Act,GDPR,Operational Resilience Framework,ISO 27001
Threats: Cyber
  Event Phase Response Description Determine the protocols for sharing relevant information in a multi-team setup Scenario - Russia attacks Poland Amidst escalating international tensions, several missiles have struck the outskirts of Rzeszow, Poland, coinciding with a military offensive in Taiwan. This simulation focuses on the immediate aftermath in Rzeszow, where authorities face possible casualties and severe infrastructure damage. . Objectives 1. Increase awareness of the requirements and responsibilities across multiple teams 2. Validate protocols for gathering and sharing relevant information 3. Validate the authority for making critical response decisions
Category: Microsimulations
Tags: Third-Paty Risk,30 minutes,Geopolitical,Multiplayer,Foundational
Capability: Situational Awareness,Task Assignment
Teams/Roles: Crisis Management Team,Communications,Strategic Risk Team
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Event Phase Response Description Determine the protocols for sharing relevant information in a multi-team setup Scenario - China invades Taiwan A critical player in semiconductor manufacturing and supply, the Taiwan invasion could affect global trade, potentially destabilising financial markets through supply chain disruption and trade disturbances. Objectives 1. Increase awareness of the requirements and responsibilities across multiple teams 2. Validate protocols for gathering and sharing relevant information 3. Validate the authority for making critical response decisions
Category: Microsimulations
Tags: CPS 230,Invasion,Geopolitical,Multiplayer
Learning Pathways: Strategic Learning Track
Capability: Situational Awareness,Task Assignment
Teams/Roles: Crisis Management Team,Communications,Strategic Risk Team
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Contact: [contact-form-7 id="1521" title="Contact form"]
Event Phase Response Description Determine the protocols for sharing relevant information in a multi-team setup Scenario - China invades Taiwan A critical player in semiconductor manufacturing and supply, the Taiwan invasion could affect global trade, potentially destabilising financial markets through supply chain disruption and trade disturbances. Objectives 1. Increase awareness of the requirements and responsibilities across multiple teams 2. Validate protocols for gathering and sharing relevant information 3. Validate the authority for making critical response decisions
Categories: Microsimulations,Threats
Sub-Category: AI
Tags: CPS 230,Invasion,Geopolitical,Multiplayer
Capability: Situational Awareness,Team Dynamics,Task Assignment
Teams/Roles: Crisis Management Team,Communications,Strategic Risk Team
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Contact: [contact-form-7 id="1521" title="Contact form"]
  Event Phase Evaluate and Activate Description Determine the appropriate stakeholders for notification based on the event scenario and impact assessment. Scenario - Ransomware Organizations worldwide, including yours, are facing a ransomware attack that demands cryptocurrency. Your network is offline, with no clear timeline for restoration. Objectives 1. Identify and prioritise the relevant stakeholders during a crisis 2. Confirm the stakeholder management strategy and communication protocols 3. Validate the Crisis Communications Stakeholder map
Category: Microsimulations
Tags: AI,Third-Paty Risk,Ransomware,Cyber,Foundational,Multiplayer,CPS 230,30 minutes
Learning Pathways: Operational Learning Track
Capability: Communications,Incident Assessment,Impact Assessment,Situational Awareness,Task Assignment,Document Retrieval
Teams/Roles: Communications,Cyber Security Team,Incident Response Team,Strategic Risk Team
Regulations / Standards: CPS 230,DORA,GDPR,Operational Resilience Framework,ISO 27001
Threats: Cyber,Third-Party Risk
Event Phase Response Description Determine the protocols for sharing relevant information in a multi-team setup Scenario - China invades Taiwan A critical player in semiconductor manufacturing and supply, the Taiwan invasion could affect global trade, potentially destabilising financial markets through supply chain disruption and trade disturbances. Objectives 1. Increase awareness of the requirements and responsibilities across multiple teams 2. Validate protocols for gathering and sharing relevant information 3. Validate the authority for making critical response decisions
Categories: Microsimulations,Threats
Sub-Category: Natural Disasters
Tags: Multiplayer,CPS 230,Invasion,Geopolitical
Capability: Situational Awareness,Team Dynamics,Task Assignment
Teams/Roles: Crisis Management Team,Communications,Strategic Risk Team
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
Contact: [contact-form-7 id="1521" title="Contact form"]
  Event Phase Response Description Determine the protocols for sharing relevant information in a multi-team setup Scenario - Russia attacks Poland Amidst escalating international tensions, several missiles have struck the outskirts of Rzeszow, Poland, coinciding with a military offensive in Taiwan. This simulation focuses on the immediate aftermath in Rzeszow, where authorities face possible casualties and severe infrastructure damage. . Objectives 1. Increase awareness of the requirements and responsibilities across multiple teams 2. Validate protocols for gathering and sharing relevant information 3. Validate the authority for making critical response decisions
Categories: Microsimulations,Featured Microsimulations
Tags: Foundational,Third-Paty Risk,Multiplayer,30 minutes,Geopolitical
Capability: Situational Awareness,Task Assignment
Teams/Roles: Crisis Management Team,Communications,Strategic Risk Team
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Geopolitical,Supply Chain Disruption,Third-Party Risk
  Event Phase Response Description Review business impact data and validate playbooks for managing disruptions to critical functions due to a third- party outage. Scenario - Loss of Digital Supplier A cyber-attack has taken your critical vendor offline, leading to a widespread impact throughout your organisation. Objectives 1. Review and validate Business Impact data from the Business Continuity Plan / Playbook 2. Validate currency of critical functions, owners and dependencies 3. Review and validate first actions in Business Continuity Plans
Category: Microsimulations
Learning Pathways: Operational Learning Track
Capability: Response Playbooks,Situational Awareness,Task Assignment
Teams/Roles: Communications,Incident Response Team,Procurement
Regulations / Standards: CPS 230,Operational Resilience Framework
Threats: Cyber,Supply Chain Disruption,Third-Party Risk
  Event Phase Evaluate and Activate Description Review the steps and protocols around the impact assessment and communication protocols of the event. Scenario - Gen AI Databreach Sensitive company information has been discovered on ChatGPT, but the situation worsens when highly confidential data surfaces on wormGPT.  This Microsimulation is designed to cultivate a deep understanding of the complex risks stemming from information security breaches and the spread of sensitive data across unauthorized networks. Objectives 1. Demonstrate proficiency in conducting Incident and Impact Assessments 2. Demonstrate capability in creating situational awareness 3. Verify the communication protocols
Category: Microsimulations
Tags: Foundational,Multiplayer,CPS 230,30 minutes,Gen AI Databreach,AI,Cyber
Capability: Communications,Incident Assessment,Impact Assessment,Situational Awareness,Task Assignment,Document Retrieval
Teams/Roles: Communications,Cyber Security Team,Incident Response Team
Regulations / Standards: CPS 230,DORA,EU AI Act,GDPR,Operational Resilience Framework,ISO 27001
Threats: Artificial Intelligence,Cyber
  Event Phase Evaluate and Activate Description Review the steps and protocols around the impact assessment and communication protocols of the event. Scenario - Gen AI Databreach Sensitive company information has been discovered on ChatGPT, but the situation worsens when highly confidential data surfaces on wormGPT.  This Microsimulation is designed to cultivate a deep understanding of the complex risks stemming from information security breaches and the spread of sensitive data across unauthorized networks. Objectives 1. Demonstrate proficiency in conducting Incident and Impact Assessments 2. Demonstrate capability in creating situational awareness 3. Verify the communication protocols
Category: Microsimulations
Tags: Cyber,Foundational,Multiplayer,CPS 230,30 minutes,Gen AI Databreach,AI
Capability: Communications,Incident Assessment,Impact Assessment,Situational Awareness,Task Assignment,Document Retrieval
Teams/Roles: Communications,Cyber Security Team,Incident Response Team
Regulations / Standards: CPS 230,DORA,EU AI Act,GDPR,Operational Resilience Framework,ISO 27001
Threats: Artificial Intelligence,Cyber
  Event Phase Evaluate and Activate Description Review the steps and protocols around the impact assessment and communication protocols of the event. Scenario - Gen AI Databreach Sensitive company information has been discovered on ChatGPT, but the situation worsens when highly confidential data surfaces on wormGPT.  This Microsimulation is designed to cultivate a deep understanding of the complex risks stemming from information security breaches and the spread of sensitive data across unauthorized networks. Objectives 1. Demonstrate proficiency in conducting Incident and Impact Assessments 2. Demonstrate capability in creating situational awareness 3. Verify the communication protocols
Category: Microsimulations
Tags: Cyber,Foundational,Multiplayer,CPS 230,30 minutes,Gen AI Databreach,AI
Capability: Communications,Incident Assessment,Impact Assessment,Situational Awareness,Task Assignment,Document Retrieval
Teams/Roles: Communications,Cyber Security Team,Incident Response Team
Regulations / Standards: CPS 230,DORA,EU AI Act,GDPR,Operational Resilience Framework,ISO 27001
Threats: Artificial Intelligence,Cyber
  Event Phase Evaluate and Activate Description Review the steps and protocols around the impact assessment and communication protocols of the event. Scenario - Gen AI Databreach Sensitive company information has been discovered on ChatGPT, but the situation worsens when highly confidential data surfaces on wormGPT.  This Microsimulation is designed to cultivate a deep understanding of the complex risks stemming from information security breaches and the spread of sensitive data across unauthorized networks. Objectives 1. Demonstrate proficiency in conducting Incident and Impact Assessments 2. Demonstrate capability in creating situational awareness 3. Verify the communication protocols
Category: Microsimulations
Tags: AI,Cyber,Foundational,Multiplayer,CPS 230,30 minutes,Gen AI Databreach
Learning Pathways: Operational Learning Track
Capability: Communications,Incident Assessment,Impact Assessment,Situational Awareness,Task Assignment,Document Retrieval
Teams/Roles: Communications,Cyber Security Team,Incident Response Team
Regulations / Standards: CPS 230,DORA,EU AI Act,GDPR,Operational Resilience Framework,ISO 27001
Threats: Artificial Intelligence,Cyber
  Event Phase Response Description Review the roles and initial responsibilities when responding to an event Scenario - AI Deepfake Your organization becomes the target of an AI-driven cyber-attack, utilizing deepfake technology. This attack triggers a governance breakdown, posing severe risks to the organization's reputation and operational integrity. Objectives 1. Demonstrate awareness of the roles and responsibilities involved in responding to a critical event 2. Evidence knowledge of the first actions in an event 3. Verify key role alternates
Category: Microsimulations
Tags: AI,Foundational,Deepfake,Cyber,30 minutes,CPS 230,Third-Paty Risk,Multiplayer
Learning Pathways: Strategic Learning Track
Capability: Incident Assessment,Response Playbooks
Teams/Roles: Crisis Management Team,Communications,Incident Response Team,Strategic Risk Team
Regulations / Standards: CPS 230,DORA,EU AI Act,Operational Resilience Framework
Threats: Artificial Intelligence,Conduct,Cyber,Third-Party Risk
Featured Microsimulations
Categories: Microsimulations,Featured Microsimulations
Tags: Foundational,Third-Paty Risk,Multiplayer,30 minutes,Geopolitical
Learning Tracks
Category: Learning Tracks
Tags: Multiplayer,CPS 230,Geopolitical,Invasion
Category: Learning Tracks
Tags: CPS 230,Geopolitical,Invasion,Multiplayer
Threats
Categories: Microsimulations,Threats
Sub-Category: Natural Disasters
Tags: Multiplayer,CPS 230,Invasion,Geopolitical
Categories: Microsimulations,Threats
Sub-Category: AI
Tags: CPS 230,Invasion,Geopolitical,Multiplayer
Microsimulations
Category: Microsimulations
Tags: 30 minutes,Multiplayer,AI,CPS 230,Cyber,Foundational,Gen AI Databreach
Category: Microsimulations
Tags: Multiplayer,Ransomware,AI,Foundational,Cyber,30 minutes,CPS 230,Third-Paty Risk
Category: Microsimulations
Tags: Multiplayer,Gen AI Databreach,AI,Foundational,Cyber,30 minutes,CPS 230
Category: Microsimulations
Tags: Modern Slavery,Multiplayer,Foundational,30 minutes
Category: Microsimulations
Tags: Multiplayer,Foundational,30 minutes,Systemic Racism
Category: Microsimulations
Tags: 30 minutes,Ransomware,AI,Multiplayer,Cyber,Foundational,CPS 230,Third-Paty Risk
Category: Microsimulations
Tags: Third-Paty Risk,30 minutes,Geopolitical,Multiplayer,Foundational
Category: Microsimulations
Tags: CPS 230,Invasion,Geopolitical,Multiplayer
Categories: Microsimulations,Threats
Sub-Category: AI
Tags: CPS 230,Invasion,Geopolitical,Multiplayer
Category: Microsimulations
Tags: AI,Third-Paty Risk,Ransomware,Cyber,Foundational,Multiplayer,CPS 230,30 minutes
Categories: Microsimulations,Threats
Sub-Category: Natural Disasters
Tags: Multiplayer,CPS 230,Invasion,Geopolitical
Categories: Microsimulations,Featured Microsimulations
Tags: Foundational,Third-Paty Risk,Multiplayer,30 minutes,Geopolitical
Category: Microsimulations
Tags: Foundational,Multiplayer,CPS 230,30 minutes,Gen AI Databreach,AI,Cyber
Category: Microsimulations
Tags: Cyber,Foundational,Multiplayer,CPS 230,30 minutes,Gen AI Databreach,AI
Category: Microsimulations
Tags: Cyber,Foundational,Multiplayer,CPS 230,30 minutes,Gen AI Databreach,AI
Category: Microsimulations
Tags: AI,Cyber,Foundational,Multiplayer,CPS 230,30 minutes,Gen AI Databreach
Category: Microsimulations
Tags: AI,Foundational,Deepfake,Cyber,30 minutes,CPS 230,Third-Paty Risk,Multiplayer