{"course":{"productid":37156,"modality":1,"active":true,"language":"fr","title":"DORA & NIS2 Tabletop Exercises","productcode":"ISTTX","vendorcode":"IC","vendorname":"Innovator Class","fullproductcode":"IC-ISTTX","courseware":{"has_ekit":false,"has_printkit":true,"language":""},"url":"https:\/\/portal.flane.ch\/course\/innovator-isttx","objective":"<p>Upon completion of the training, participants will be able to:<\/p>\n<ul>\n<li>Translating DORA and NIS2 requirements into training concepts<\/li><li>Planning and facilitating tabletop exercises in a structured manner<\/li><li>develop realistic crisis scenarios (e.g., ransomware, third-party failure)<\/li><li>To evaluate decision-making processes and responsiveness<\/li><li>Identify vulnerabilities and develop countermeasures<\/li><li>to establish a sustainable TTX program within the company<\/li><\/ul>","audience":"<ul>\n<li>CISO \/ Information Security Officer<\/li><li>IT Managers and Security Officers<\/li><li>BCM and Risk Manager<\/li><li>Compliance and Audit Officers<\/li><li>SOC employees<\/li><li>Security Incident Manager<\/li><li>Security consultants and IT service providers<\/li><\/ul>","contents":"<h4>Day 1 &ndash; Fundamentals &amp; Design of Tabletop Exercises<\/h4><h5>Module 1: Regulatory Context (DORA &amp; NIS2)<\/h5><ul>\n<li>Overview of Resilience Testing Requirements<\/li><li>Incident Response &amp; Crisis Management in a Regulatory Context<\/li><li>Expectations of Regulators and Auditors<\/li><li>Common vulnerabilities encountered in practice<\/li><\/ul><h5>Module 2: Fundamentals of Tabletop Exercises<\/h5><ul>\n<li>Distinction from penetration testing and red teaming<\/li><li>Objectives and Benefits of TTX<\/li><li>Roles and Responsibilities (Management, IT, Legal, Communications)<\/li><\/ul><h5>Module 3: Designing a TTX<\/h5><ul>\n<li>Development of realistic scenarios<\/li><li>Building an Inject Structure (Escalation and Dynamics)<\/li><li>Defining exercise objectives and KPIs<\/li><li>Development of a training manual<\/li><\/ul><h5>Practical exercise<\/h5><ul>\n<li>Developing your own scenario in groups<\/li><\/ul><h4>Day 2 &ndash; Implementation, Evaluation, and Operationalization<\/h4><h5>Module 4: Conducting a Tabletop Exercise<\/h5><ul>\n<li>Live simulation of a realistic scenario (e.g., a ransomware attack involving a third-party outage)<\/li><li>Role-based implementation (Management, IT, Communications)<\/li><li>Facilitation techniques and managing the exercise<\/li><\/ul><h5>Module 5: Evaluation &amp; Lessons Learned<\/h5><ul>\n<li>Structured debriefing (Hot Wash \/ Debriefing)<\/li><li>Identification of vulnerabilities<\/li><li>Assessment of Responsiveness<\/li><li>Documentation of the results<\/li><\/ul><h5>Module 6: Mapping to DORA &amp; NIS2<\/h5><ul>\n<li>Identification of Regulatory Gaps<\/li><li>Prioritization of measures<\/li><li>Preparing for Audits and Inspections<\/li><\/ul><h5>Module 7: Establishing a TTX Program<\/h5><ul>\n<li>Integration into ISMS and BCM<\/li><li>Developing a regular exercise routine<\/li><li>Definition of Key Performance Indicators<\/li><li>Scaling within the company<\/li><\/ul>","summary":"<p>This practical, two-day training course teaches companies how to plan, conduct, and evaluate tabletop exercises (TTX) in accordance with DORA and NIS2.<\/p>\n<p>Participants will learn how to apply regulatory requirements to realistic crisis scenarios, practice decision-making under pressure, and measurably improve organizational resilience.<\/p>\n<p>A particular focus is placed on realistic simulations in which participants actively take on roles and make decisions.<\/p>","objective_plain":"Upon completion of the training, participants will be able to:\n\n\n- Translating DORA and NIS2 requirements into training concepts\n- Planning and facilitating tabletop exercises in a structured manner\n- develop realistic crisis scenarios (e.g., ransomware, third-party failure)\n- To evaluate decision-making processes and responsiveness\n- Identify vulnerabilities and develop countermeasures\n- to establish a sustainable TTX program within the company","audience_plain":"- CISO \/ Information Security Officer\n- IT Managers and Security Officers\n- BCM and Risk Manager\n- Compliance and Audit Officers\n- SOC employees\n- Security Incident Manager\n- Security consultants and IT service providers","contents_plain":"Day 1 \u2013 Fundamentals & Design of Tabletop Exercises\n\nModule 1: Regulatory Context (DORA & NIS2)\n\n\n- Overview of Resilience Testing Requirements\n- Incident Response & Crisis Management in a Regulatory Context\n- Expectations of Regulators and Auditors\n- Common vulnerabilities encountered in practice\nModule 2: Fundamentals of Tabletop Exercises\n\n\n- Distinction from penetration testing and red teaming\n- Objectives and Benefits of TTX\n- Roles and Responsibilities (Management, IT, Legal, Communications)\nModule 3: Designing a TTX\n\n\n- Development of realistic scenarios\n- Building an Inject Structure (Escalation and Dynamics)\n- Defining exercise objectives and KPIs\n- Development of a training manual\nPractical exercise\n\n\n- Developing your own scenario in groups\nDay 2 \u2013 Implementation, Evaluation, and Operationalization\n\nModule 4: Conducting a Tabletop Exercise\n\n\n- Live simulation of a realistic scenario (e.g., a ransomware attack involving a third-party outage)\n- Role-based implementation (Management, IT, Communications)\n- Facilitation techniques and managing the exercise\nModule 5: Evaluation & Lessons Learned\n\n\n- Structured debriefing (Hot Wash \/ Debriefing)\n- Identification of vulnerabilities\n- Assessment of Responsiveness\n- Documentation of the results\nModule 6: Mapping to DORA & NIS2\n\n\n- Identification of Regulatory Gaps\n- Prioritization of measures\n- Preparing for Audits and Inspections\nModule 7: Establishing a TTX Program\n\n\n- Integration into ISMS and BCM\n- Developing a regular exercise routine\n- Definition of Key Performance Indicators\n- Scaling within the company","summary_plain":"This practical, two-day training course teaches companies how to plan, conduct, and evaluate tabletop exercises (TTX) in accordance with DORA and NIS2.\n\nParticipants will learn how to apply regulatory requirements to realistic crisis scenarios, practice decision-making under pressure, and measurably improve organizational resilience.\n\nA particular focus is placed on realistic simulations in which participants actively take on roles and make decisions.","version":"1.0","duration":{"unit":"d","value":2,"formatted":"2 jours"},"pricelist":{"List Price":{"DE":{"country":"DE","currency":"EUR","taxrate":19,"price":1390},"CH":{"country":"CH","currency":"CHF","taxrate":8.1,"price":1390},"AT":{"country":"AT","currency":"EUR","taxrate":20,"price":1390},"SE":{"country":"SE","currency":"EUR","taxrate":25,"price":1390},"SI":{"country":"SI","currency":"EUR","taxrate":20,"price":1390}}},"lastchanged":"2026-05-08T02:17:47+02:00","parenturl":"https:\/\/portal.flane.ch\/swisscom\/fr\/json-courses","nexturl_course_schedule":"https:\/\/portal.flane.ch\/swisscom\/fr\/json-course-schedule\/37156","source_lang":"fr","source":"https:\/\/portal.flane.ch\/swisscom\/fr\/json-course\/innovator-isttx"}}