The general cyber security of the customer seems to be in order: security systems have been implemented and the incident response procedures are ready. The question for DeepBlue is to investigate whether the cyber security really holds up in the case of an actual attack.
In consultation with a small delegation from the management, DeepBlue secretly sets up and carries out a cyber attack. The attack simulates an attack with hostage software (ransomware) and lasts a total of three days. During the three days, more and more systems are (fictitiously) switched off. We test in detail how the organization responds to this and whether the procedures in question are indeed working as desired.
As a result of this incident response exercise, a number of procedures are tightened up, so our customer is optimally prepared for any calamities.