Ocean’99

    Categories: Simulation Games
    Wishlist Share
    Share Course
    Page Link
    Share On Social Media

    About Course

    Add to Wishlist

    “If you spend more on coffee than on IT security, you will be hacked. What’s more, you deserve to be hacked.”

    ― Richard Clarke, Former U.S. National

    Coordinator for Security and Infrastructure Protection

    Statistics make the Case for Cybersecurity Training
    According to the ISACA 2019 State of Cybersecurity Report,

    “Cyberattacks are increasing but the methods employed remain relatively static. Motivation remains monetary and ransomware countermeasures are nearing ubiquity.”

    All this translates to the fact that the majority of organizations are unprepared and do not understand the importance of adopting cybersecurity measures vital in an extensively interconnected world.

    What is Ocean’s 99?
    Ocean’s 99 is a stimulating virtual heist scenario designed to develop the ability to comprehend and internalize the importance of cybersecurity.
    The participants are given a realistic cyber crime scenario, assigned roles, and asked to perform risk assessments. The goal of the simulation is to successfully transport three valuable objects to and from the Tokyo Museum for an exhibition while evading all security threats. The threats incurred are based on the most common incidents and security threats, which ensures that learning is both realistic and relevant.

     

    Ocean’s 99 simulation is broken down into the following structure:

    Topics for this course

    Ocean’s 99 simulation is broken down into the following structure:

    • Introduction – During the induction, specific learning objectives for your organization will be introduced and trainees will be given an overview of the simulation. The facilitator will then assign roles and responsibilities.
    • Security Policy and Risk Assessment – At this stage, the team will be asked to define a security policy and perform a risk assessment for the organization. The team will then design and agree on the supporting processes and cybersecurity procedures to use in the simulation.
    • Awareness session – The team will prepare an awareness campaign.
    • Moving objects from the Museum to the Airport – The first round of the simulation tests the team’s design. During this round, the team will encounter a series of realistic cybersecurity events that they must recognize and deal with.
    • Reflection and Improvement – After the first round, the team will review the lessons learned. They will reflect on the 4 P’s of Service Design: People, Processes, Products, and Partners. The team must then agree on and implement improvements to their Cyber Security and Cyber Resilience capabilities.
    • Moving objects from the Airport to the Museum – This is the final round where the team will encounter another series of realistic Cyber Security events that they must recognize and deal with. This also offers the opportunity to try out and test their improvements and investments in new countermeasures.
    • Closure and Lessons Learned – The simulation will finish with a review of the lessons learned and a discussion of actionable steps for everyday work.
    Show More

    What Will You Learn?

    • Increasing their understanding of cybersecurity and resilience
    • Increasing their understanding of the importance of human behavior in securing assets
    • Allowing participants to experience security processes in action
    • Teaching participants how to apply key cybersecurity processes