Cybersecurity Training – Ransomware Tabletop Exercise and Business Continuity Committee Information Session

⁠⁠⁠The ransomware exercise will be conducted against the NLA’s systems, utilising the Library’s disaster recovery framework, processes and cyber incident response plan. Targeted systems hold personal, sensitive and high-value value data, including bespoke applications, on-premise infrastructure and SaaS systems. The system (s) to be utilised in the exercise can be recommended by the respondent and/or discussed with the kick-off meeting.

The first tabletop exercise is expected to be conducted with: -

• CIO/CISO
• Technology Operations Systems Administrators
• Cybersecurity Team
• Digital Support (aka Helpdesk) Lead
• Communications officer(s)
• Enterprise Risk and Governance representative(s)
• Other officers as required.

The second tabletop exercise/information session is expected to be conducted with Business Continuity Committee (BCC) team members covering various positions across the library.

Both sessions are required to be performed on-premises at the National Library of Australia Parkes Place building. A trainer will primarily facilitate these sessions and have: -

• A strong background in cybersecurity and incident response
• A reputation for delivering engaging and effective training sessions
• Including real-world examples
• Engaging presentation style to foster a collaborative and participatory atmosphere to keep the audience engaged.

No computers / electronic simulations are required for either exercise. Utilising the Library’s Managed Detection and Response system to generate the scenario is desired.

The Library is requesting follow-up reports from both presentations to cover: -

• assess effectiveness of the Library’s Cyber Incident Response Plan
• assess staff knowledge of frameworks/plans and the ability to apply plans
• recommendations for improvements (suggestions for updating business continuity frameworks and incident response plans etc.)
• suggest areas of training or resources that would be beneficial

The Library is seeking to have the Cybersecurity Tabletop Ransomware Exercise in the second week of March 2024. Later in March 2024 or early April 2024, there will be an exercise with the Business Continuity Committee (BCC) team members.

Both sessions are expected to be half-a-day.