Goran Polonji and Dalibor Gernhardt
October 16, 2024 9:46 amThe NIS2 Directive, the latest iteration of the Network and Information Systems Directive, aims to strengthen cyber resilience across the European Union (EU), particularly for operators of essential and critical infrastructure. The new version of the directive applies to a broader spectrum of essential service providers and digital service operators, establishing two key categories of entities: "essential entities" and "important entities," both of which must comply with NIS2's rigorous requirements.
However, what challenges do organizations face when it comes to effective Incident Response Team (IRT) training, and how can simulations elevate the learning experience and drive improvements in response tactics? These critical questions will be the focus of our workshop.
NIS2-regulated organizations often manage complex, interdependent IT and OT infrastructures, with many having highly critical IT environments. Their biggest challenge? Ensuring digital resilience and incident-readiness. But what happens when an incident occurs? How do you handle it effectively while staying compliant with NIS2?
In this hands-on workshop, participants will be guided through an immersive incident response process within a fictional essential entity, Fictional Essential Service Organization (FESO). FESO’s complex IT and OT infrastructure serves as the backbone of its operations and services. During the workshop, FESO will face a cyber attack led by an unknown attacker. Using Cyber Conflict Simulator, we will collaboratively explore the most effective tactics, techniques, and procedures (TTPs) for managing the incident, all while ensuring compliance with NIS2.
This workshop is designed for cybersecurity specialists and managers from organizations expected to be categorized as "essential" or "important" entities under NIS2. However, it is equally relevant to any company interested in enhancing its incident management processes. The workshop will provide real-world insights and strategies to help teams improve their response capabilities.
Workshop Highlights:
- Realistic Cyber Incident Simulation: Hands-on experience responding to a simulated cyber attack within FESO’s complex IT/OT environment.
- NIS2 Compliance Focus: Practical exploration of how regulatory requirements influence incident response strategies.
- Role-based Engagement: Participants will be assigned roles that mirror their real-world responsibilities, ensuring the workshop's relevance and applicability to their organizations.
- Collaborative Problem-Solving: Together, we will identify the best practices, challenges, and lessons learned from managing complex incidents.
The workshop will run for approximately two hours. We invite you to join us for this interactive session and take a step forward in strengthening your organization's cyber resilience and incident management.
Goran Polonji is an experienced Information Security Consultant and Cybersecurity Auditor at Utilis Ltd., with over 20 years of experience working with financial institutions and various industries to enhance information security and ensure regulatory compliance. As a domain expert, Goran is a key member of the Cyber Conflict Simulator development team. Throughout his career, he has focused on bridging the gap between business leaders and technology experts, promoting a deeper understanding of cybersecurity challenges. Goran is dedicated to aligning administrative and technical cybersecurity controls, helping organizations strengthen their defenses against evolving threats.
Dalibor Gernhardt is a lecturer in military defense and security intelligence at the Croatian Military Academy "Dr. Franjo Tuđman“, with over 12 years of experience in defense and security operations. In addition to his military role, Dalibor is a PhD candidate at the Faculty of Electrical Engineering and Computing in Zagreb. His doctoral dissertation focuses on the organization and implementation of simulation exercises in the field of cybersecurity, with an emphasis on practical applications and improving cyber resilience. Dalibor’s expertise in defense and cybersecurity gives him a unique perspective on bridging theoretical knowledge with real-world scenarios.
Cyber Conflict Simulator support team: Zdenko Ćorić (Utilis Ltd.), Vito Žuvanić (Utilis Ltd.), Dražen Barić (Utilis Ltd.), and Stjepan Groš (Faculty of Electrical Engineering and Computing, FER).
Categorised in: 2024
This post was written by user_298812