1. Home
  2. Training courses
  3. Full catalogue of courses
  4. Cyber disaster response: development of simulation exercises

Cyber disaster response: development of simulation exercises

Registration
Start Date:
End Date:
Event dates
Start Date:
End Date:
Location

Mauritius

Global or multi-regional
Training topics
  • Cybersecurity
Training type
Training course
Training modality
Face to Face
Languages
  • English
Event mail contact
mlobin@cert.govmu.org
Financial support available
Yes
Tutors
  • Kaleem Ahmed USMANI
Coordinators
  • Manish Lobin
  • Ghazi Mabrouk
Course level

Intermediate

Duration
4.5 days
Price
$0.00
* Financial support available

Event organizer(s)

CERT-MU logo
Computer Emergency Response Team of Mauritius (CERT-MU)

Supported by

Global Gateway logo
Global Gateway

Description

This 4.5-day training course provides essential steps and guidelines for designing effective cybersecurity exercises, focusing on the practical aspects of information security. During the course, participants will learn how to define objectives, choose appropriate approaches, design network topologies, create realistic scenarios, establish rules, select relevant metrics, and capture valuable lessons.

The program also emphasizes developing cyber disaster response simulations, enhancing participants' ability to foster collaboration between the public and private sectors. By the end of the course, attendees will gain a deeper understanding of cyber-attacks and strategies for protecting and defending critical information infrastructures. These skills will enable participants to plan better, implement, and follow up on cyber disaster responses.

With generous support from the Global Gateway initiative of the European Union, participation in this training programme is free of charge for selected applicants. This includes accommodation, meals, and other planned learning activities during the training. Participants or their organizations are responsible for covering their travel expenses and visa application costs for Mauritius if needed.

This training is intended for policymakers, ICT regulators and government officials such as Information Security Officers, Security Managers, Network Engineers and Systems Administrators.

The maximum number of participants in this training is limited to 30.

Members of the above-mentioned target population are invited to apply for the training if they meet the following criteria:

  • Hold an undergraduate degree in a relevant field or have a minimum of three years of experience in incident response, network security, information system security and system administration if they do not hold a university degree.
  • Possess a fluent level of English.
  • Complete the application questionnaire and attach an up-to-date CV, a recommendation letter from their employer,  and a motivation letter.

Government officials and policymakers from developing countries, particularly women, are encouraged to apply.

Selection will be conducted by the course organizers, who will consider the above entry requirements along with an analysis of the application questionnaire and the recommendation/motivation letter of each applicant.

 Upon completing the training, participants will be able to: 

  • Develop incident response and crisis management plans
  • Design a cyber security simulation exercise
  • Execute simulation exercises such as TTX and technical simulations
  • Develop effective communication plans for an effective interaction with all actors during a crisis.

The training will include presentations by subject matter experts, the analysis of examples and real-life case studies, and group exercises followed by instructor feedback. Additionally, cyber simulation scenarios will be conducted to address various threats, including ransomware, website defacement, phishing, malware, DDoS attacks, and other relevant risks.

Participants will be evaluated based on the following criteria:

  • Active Participation – 10% 
  • 2 Group Exercises & Presentations (Day 1) – 20% 
  • 2 Group Simulation Exercise (Day 2) – 20% 
  • 1 Group simulation exercise (Day 3) - 25%
  • 1 Group simulation exercise (Day 4) – 25%

Note: A minimum total score of 70% is required to obtain the ITU certificate. Full attendance throughout the training is also mandatory for certification.

Arrival – Sunday, 30 March 2025

19:00–21:00
Dinner for all international participants

Day 1 – Monday, 31 March 2025

08:30–09:00
Registration

09:00–10:00
Opening Ceremony

  • Officials from the Ministry of ITCI in Mauritius
  • Representative of ITU
  • Representative of the European Union (TBC)
  • Group photo

10:00–11:00
Session 1: Principles of Cyber Incident Response
Learning Outcomes:

  • Understand cybersecurity preparedness
  • Formulate key components of an incident response plan
  • Develop a coordinated and executable cyber response

11:15–12:15
Session 2: Exercise, Group Presentations, and De-briefing
Learning Outcome:

  • Master concepts related to cyber incident response

13:15–14:15
Session 3: Introduction to Cyber Simulation Exercises
Learning Outcomes:

  • Recognize the foundation of simulation exercises
  • Identify the types and benefits of exercises
  • Gain insights into exercise planning stages

14:30–16:00
Session 4: Exercise, Group Presentations, and De-briefing
Learning Outcome:

  • Assimilate concepts of exercise preparation and planning

Day 2 – Tuesday, 1 April 2025

09:00–10:00
Session 1: Developing Realistic Cyber Scenarios
Learning Outcomes:

  • Formulate requirements for scenario development (scope, objectives, etc.)
  • Write and finalize scenarios, injects, and hosting requirements

10:00–12:00
Session 2: Exercise and Group Presentations
Learning Outcome:

  • Strengthen theoretical aspects of scenario development

12:15–13:15
Session 3: Conducting Table-Top Exercises
Learning Outcomes:

  • Enhance knowledge of table-top exercises
  • Understand attack containment and recovery
  • Improve communication and decision-making during real attacks

14:15–16:00
Session 4: Exercise and Group Presentations
Learning Outcome:

  • Consolidate concepts related to table-top exercises

Day 3 – Wednesday, 2 April 2025

09:00–10:00
Session 1: Implementation of Practical (Hands-On) Scenarios
Learning Outcome:

  • Gain familiarity with the setup for cyber simulations

10:00–12:00
Session 2: Group Exercise
Learning Outcome:

  • Develop proficiency in hands-on simulation exercises

12:15–13:15
Session 3: Running a Live Simulation
Learning Outcome:

  • Learn the implementation process for simulation exercises

14:00–16:00
Session 4: Group Simulation Exercise
Learning Outcomes:

  • Execute technical exercises using given scenarios
  • Utilize provided technical setups and guidelines

Day 4 – Thursday, 3 April 2025

09:00–11:00
Session 1: Group Simulation Exercise
Learning Outcomes:

  • Conduct technical exercises using detailed scenarios and setups

11:15–12:15
Session 2: Post-exercise Evaluation and Lessons Learned
Learning Outcomes:

  • Review simulation exercise outcomes
  • Extract actionable lessons

13:15–16:00
Group Tour to CERT-MU Office and SOC

18:00
Cultural Dinner (TBC)

Day 5 – Friday, 4 April 2025

10:00–10:45
Recap Session and Wrap-Up
Learning Outcome:

  • Reflect on discussions and exercises to assess knowledge

10:45–11:00
Course Evaluation

11:15–12:15
Certificate Award Ceremony

13:15–13:30
Closing Ceremony

13:30–16:00
Group Tour for Participants

Financial support available

ITU will cover training costs, accommodation for 6 nights, meals and training activities.

 

Registration information

Document on registration information (English)

Unless specified otherwise, all ITU Academy training courses are open to all interested professionals, irrespective of their race, ethnicity, age, gender, religion, economic status and other diverse backgrounds. We strongly encourage registrations from female participants, and participants from developing countries. This includes least developed countries, small island developing states and landlocked developing countries.

Related documentation and links
Share in