The National Cyber Security Centre (NCSC) provides an ‘Exercise in a Box’ online tool that can help businesses check how resilient they are to cyber attacks as well as practise their response in a safe environment.
The tool will give you some exercises that can be carried out in your own time as many times as you want. The exercises include:
- A ransomware attack delivered by phishing email;
- Mobile phone theft and response;
- Being attacked from an unknown Wi-Fi network;
- Insider threat leading to a data breach;
- Third party software compromise;
- Threatened leak of sensitive data;
- Home & remote working; and
- Managing a vulnerability disclosure.
Micro-exercises are also included, covering areas like use of passwords and identifying and reporting a suspected phishing email.
To use ‘Exercise in a Box’ you need to register for an account with NCSC, and you’ll be provided with a tailored report that helps you to identify what to do next and sets out where you can find helpful guidance.