Your team must have sufficient skills and experience to be able to offer all aspects of the Cyber Incident Exercising service, as outlined in the NCSC CIE Technical Standard. It is not necessary for one person to have all the skills required; the expectation is that in most cases the spread of skills and experience will be across a team of people. You will need to provide evidence that your staff have experience of offering exercising services at the appropriate size of organisation and at a range of levels, and the capabilities and skills to take incident exercising from initial client engagement, through scenario development to conducting the exercise and reporting back.
Importantly, your team will need a Team Lead who has at least three years’ experience of cyber incident exercising in a role where cyber incident exercising for external clients forms a key part of the job. The experience must be of both table-top and live play exercises for organisationally significant events (as defined by the NCSC CIE Technical Standard).
If you don’t have a suitable Team Lead, there is an alternative route to meet this requirement through our Team Lead test.
This route is open to people with at least one year’s experience of incident exercising in a role where incident exercising for external clients forms a key part of the job.
For more information about the Team Lead test, please contact IASME’s customer services team ([email protected]).