Cyber-hygiene and prevention are sometimes hard to fit in when there are so many vulnerabilities, zero-day attacks and third-party incidents that keep us busy every day. During the pandemic, many companies put their Incident Response Plans and tabletop exercises on the back burner as they were migrating an entire workforce from office to home, and other response requirements took priority over preparedness.

Now that it has been a year since the migration, and it looks like remote work will continue to be part of the “new normal,” thinking about incident response planning, including tabletop exercise is timely.

I have always conducted live tabletop exercises because it is effective to get the Incident Response Team in the room, present different scenarios, discuss pros and cons, how to respond, whom to call, and what to do, and determine follow-up items after the exercise.

With remote working and companies still not shifting to on premises operations, many companies have not developed or reviewed their Incident Response Plan, nor have they conducted a tabletop exercise in the last year.

The best way to prepare for an incident is to practice. If an incident occurred now, your Incident Response Team would have to meet virtually, so it makes sense to conduct a tabletop virtually as well. A tabletop is meant to mimic a real incident and how the team will respond. What better way to test the team now than to conduct the tabletop virtually?

A virtual tabletop is better than no tabletop, and practice is better than no practice. We are happy to help develop and review your Incident Response Plan and assist with a virtual tabletop exercise to put cyber-hygiene and preparedness back on the priority list.

Photo of Linn Foster Freedman Linn Foster Freedman

Linn Freedman practices in data privacy and security law, cybersecurity, and complex litigation. She is a member of the Business Litigation Group and the Financial Services Cyber-Compliance Team, and chair’s the firm’s Data Privacy and Security Team. Linn focuses her practice on…

Linn Freedman practices in data privacy and security law, cybersecurity, and complex litigation. She is a member of the Business Litigation Group and the Financial Services Cyber-Compliance Team, and chair’s the firm’s Data Privacy and Security Team. Linn focuses her practice on compliance with all state and federal privacy and security laws and regulations. She counsels a range of public and private clients from industries such as construction, education, health care, insurance, manufacturing, real estate, utilities and critical infrastructure, marine and charitable organizations, on state and federal data privacy and security investigations, as well as emergency data breach response and mitigation. Linn is an Adjunct Professor of the Practice of Cybersecurity at Brown University and an Adjunct Professor of Law at Roger Williams University School of Law.  Prior to joining the firm, Linn served as assistant attorney general and deputy chief of the Civil Division of the Attorney General’s Office for the State of Rhode Island. She earned her J.D. from Loyola University School of Law and her B.A., with honors, in American Studies from Newcomb College of Tulane University. She is admitted to practice law in Massachusetts and Rhode Island. Read her full rc.com bio here.