CybersecKyle

I’m curious on your thoughts about how an organization should run cybersecurity drills. Scheduled or by surprise?

Share your stance in my latest poll for the cybersecurity community.

Please BOOST for a wider audience and maximum results. Thanks 🙏🏼

I have the poll open for 4 days.

#Polls #Poll #KylePoll #Questions #Question #CyberSecurity #CyberDrills #POTD #QOTD

Announced
12.6%
Unannounced
21.5%
Mixed
66%
Poll ended at .
Jan 23, 2025 at 12:39amWeb
Show threadb̴̨h̷̢̨s̴̡̡̕͡ù̢á̴͘͠r͘͝e̛͠z̨̀Jan 23, 2025
@beardedtechguy you need both. Folks need to understand what to do when an incident occurs and also needs to know what the signs are (e.g. phishing). A good way to weaken trust in your organization is to set folks up for failure. Why not give them the knowledge and tools to be successful? Unannounced only weed out the employees who need help and creates hostility and paranoia. Management has a key role here to keep the accountability on point.
Show threadCybersecKyleJan 23, 2025
@bh I agree! That is what employee training is. Good training platforms are vital here. Having drills, IMO, both announced and unannounced give employees the opportunity to learn.
Show threadMatt OrganJan 23, 2025
@beardedtechguy probably implied and goes without saying also but I'll say it anyway. Unannounced drills should still reasonably consider environmental and workload factors by those planning it even when those involved as responders are unaware. You wouldn't spontaneously decide to have a fire drill if the build was actually on fire at the same time. That's just mean 🤷