SMCE’s international Ocean’s 99 Cyber Security and Resilience role-play simulation workshop is an experiential learning method in which professional attendees improvise with expert learners as part of a simulated scenario. This simulation is widely acknowledged globally as a powerful technique across multiple avenues of training to help organizations understand the impact of human behavior, experience security processes in action, learn how to apply Cyber Security processes, and increase cyber security awareness.
If you want to create awareness in your teams, if you want to increase the effectiveness of your security processes, if you want to train your employees in efficient and effective way combining knowledge and skills.
As we enter the era of Digital Transformation information is becoming an increasingly critical asset that must be protected. International terrorism and increasing cyber theft and fraud has placed the need for information security high on the agendas of Both governmental and private sector organizations. Information security has been a capability that has been for too long ignored or not given the attention it deserves. Failing to do so is an unacceptable business risk for many organizations but this risk is still not taken as seriously as it should be by many organizations.
Is your organization implementing Information Security processes and measures? Are you worried about the people and behavior issues relating to security? Are you struggling to get Information security on the agenda and taken seriously?
Why are we struggling?
- Many organizations think IT technology solutions are the answers to minimize or avoid security risks, but they forget that the behavior of employees are even more important.
- Many employees do not adhere to the security policy, they don’t see the need, they don’t understand. As a result the company is wide open to being attacked, as security criminals are targeting behavior more and more.
- Many organizations still do not have effective security awareness initiatives, involving their customers, providers and employees in the early stages of the security programs. As a result there is a lack of understanding and the program is often seen as an IT program, not as a corporate program.
“This Oceans99 simulation is a powerful instrument for creating overall security awareness. It involves employees, it shows the key processes and it creates overall understanding about the key principles of Information Security”
Scenario The owner of a Tokyo Bank has decided to organize an exhibition of 3 world famous art objects in the Tokyo Museum. A criminal team called Oceans99 has plans to steal the objects. The team consisting of museum owners, a transport manager, a security advisor and a project manager is responsible for realizing this project. The team has to develop an information security policy, perform a risks analysis to identify threats, risks and vulnerabilities and execute a strategy for dealing with these risks. The team will transport the objects from the museums to the Tokyo Museum, but Oceans99 is not to be underestimated. After each round the team will receive feedback as to how well they protected the objects and will have time to improve. Will the Sponsor (the Tokyo bank) realize a Return on Investment or will the exhibition become a drama.
Objectives The simulation will be customized towards your specific learning objectives. In general these are the main objectives:
- Learn the key processes for managing Cyber Security
- Learn how to organize your security roles and responsibilities, both business and IT
- Learn how to recognize and deal with all kinds of Cyber Security issues
- Learn how to balance different interests with the organization: operations vs security
- Learn how security frameworks such Resilia or ISO27001 can be used