Cybersecurity Crisis Response
Presented in an immersive, interactive environment, stakeholders must enact each step in their crisis management plans in response to a simulated cyberattack. Program participants practice and prepare for a real-life cyber event.
Organizations who practice crisis response with our training will be able to:
- Understand techniques used by threat actors
- Identify and respond fast to a breach
- Employ mitigation strategies
- Improve Internal communication
- Meet industry compliance and reporting requirements
- Actively protect shareholder and customer value
Data Breach Cost
Data provided by Ponemon Institute and IBM from the Cost of Data Breach Report 2023
$250K
20% of organizations that experienced a data breach paid this much or more in fines
$1.5M
Cost saving achieved by organizations with high levels of IR planning and testing
$5.3M
Average cost of a breach for organizations with high levels of security skills shortage
Enhancing Your Cyber Defense
Explore the strategic benefits and distinctive methodologies of cybersecurity simulation and tabletop exercises. Discover how each approach prepares teams for real-world cyber threats, from enhancing tactical responses to fostering team coordination and communication.
- Understand the practical, hands-on experience provided by simulation exercises.
- Learn the value of scenario-based planning in tabletop exercises.
- Compare the effectiveness of each method in identifying response gaps.
- Recognize how these exercises increase cybersecurity awareness and preparedness.
- Gain insights into selecting the right approach for your organizational needs.
Meet the Team
Mike Barcomb
Director, Cyber Exercises
Mike is responsible for leading the development and delivery of simulated tabletop exercises for customers at senior executive and board levels. Mike has a 30-year career serving in the United States Army Reserve as a Military Intelligence Officer and recently retired from IBM Corporation after 31 years working in various software development, operational, and executive consulting roles, most recently as the Executive Director of the IBM X-Force Cyber Range and Cyber Crisis Management consulting service.
Learn more about Mike 
Chris Wilkes
Cyber Exercises Leader
Chris is responsible for preparing and leading SANS Executive Cyber Exercise engagements for customers globally. He has over thirty years of working with all forms of technology in complex, global corporate environments, and extensive experience in networking, security, operations, and cyber risk management. He led hundreds of immersive cyber exercises for Executive Leadership Teams and Boards of Directors across all industries, from travel, financial, transportation, healthcare, and retail to industrial and public sectors.
Learn More about Chris 
Carlos Carrillo
Director, Cyber Simulations
Carlos brings over 27 years of cybersecurity experience to SANS, overseeing the development of Cyber Ranges and Executive Cyber Exercises products. As a USAF officer with AFOSI, he supported investigations into nation-state cyber threats, playing a key role in national security operations. Before joining SANS, he held leadership positions at IBM and Mandiant, where he built global threat intelligence partnerships, spearheaded high-profile APT investigations, and trained FBI cyber agents and executives. He holds advanced degrees in Information Assurance and Computer Science.
Learn More about Carlos 
Daniel King
Cyber Exercises Facilitator
Daniel is responsible for developing and leading SANS Executive Cyber Exercises to evaluate and improve organizational leadership, readiness, and enterprise resiliency. Daniel’s decades of experience managing incident and disaster response from the local to the strategic level established him as a trusted advisor to public and private sector leaders, globally. Daniel was the Chief of Cybersecurity for CISA, Region 1 within the Department of Homeland Security, the Global Lead for IBM Security Command and he retired from active duty with the U.S. Army after 30 years of service. Daniel is a CISSP, CCSP, and GICSP.
Learn more about Daniel What global security leaders are saying about attending a SANS Executive Cybersecurity Exercise
Exercise Formats
Executive Cybersecurity Exercises are customized for each business or organization. Semi-private exercises or demonstrations are available for trade organizations, and educational providers, and as interactive training at industry conferences and events. These private, confidential sessions are delivered in the format and mode of your choice. Options include:
In Person: On-site training
Live Online: Virtual sessions moderated over a secure platform
Hybrid: Includes in-person and virtual participants
Who Should Attend
SANS Executive Cybersecurity Exercises can be customized for companies in all industries, spanning medium-sized enterprises to large corporations operating across various sectors, all seeking to bolster their cybersecurity resilience. These exercises equip tactical leaders and strategic senior executives with the insights and skills to comprehend and address potential cyber threats efficiently and adeptly.
Attendees of the exercise may encompass:
- Board of Directors
- Business Executives
- C-Suite Leaders: CEO, CIO, CISO, CFO, CLO, CMO, etc.
- Division or Departmental Managers
- Technical Subject Matter Experts
Free Introductory Sessions
Executive Cybersecurity Exercises are tailored and available for companies regardless of size or industry. The exercise is designed to empower tactical leaders and senior executives with a deeper comprehension of potential cyber threats their organization may face and how to respond to them promptly and effectively.