Using LLMs to Build Cyber Exercises | Ep. 5 The Incident Commander Series

Channel:
United States SANS Institute
Subscribers:
64,000
Published on ● Video Link: https://www.youtube.com/watch?v=WSGJT9m-X9E


Game:
The Incident (2010)
Duration: 0:00
797 views
27

In this video, Steve Armstrong-Godwin from SANS walks through building cyber exercises using an LLM (large language model) for incident management training. He shares his 30 years of expertise in designing exercises, emphasizing that they don’t have to be difficult or overly complex.

The focus is on creating non-technical, accessible tabletop exercises that are ideal for developing team skills, executive awareness, and testing new capabilities. These exercises are cost-effective, quick to plan, and especially useful for testing processes like third-party data breach scenarios. Steve demonstrates using his custom LLM tool to generate exercise structures, guiding participants through scenarios, and helping facilitators understand what to watch for.

He highlights key steps in the process: setting objectives, defining the core participants, and specifying data types, such as PCI data in supply chains. The tool can generate slides, handouts, and guides for both participants and observers, simplifying setup and offering creative scenario-building options.

Learn about the #LDR553: Cyber Incident Management course Authored by Steve Armstrong-Godwin: https://www.sans.org/u/1vvP

Discover more about SANS Institute's Cybersecurity Leadership: https://www.sans.org/u/1vvU

#CyberIncidentManagement #AI #crisismanagement #Cybersecurity #Leadership #IncidentCommander



Other Videos By SANS Institute


2024-12-162024 SANS Difference Makers Awards Ceremony
2024-12-12Leading Global Cybersecurity with Christine Bejerasco
2024-12-12Understanding the Geopolitical Landscape of Cyber Security with Shashank Joshi
2024-12-11Three Keys To Becoming a Cyber Risk Officer
2024-12-07SANS Cyber Leaders Podcast Trailer
2024-12-04Understanding the 2024 Updates to the NIST Cybersecurity Framework
2024-12-04Understanding the Risk Management Mandates in 2024 Cybersecurity Regulations
2024-12-02How Phishing Resistant Credentials Work with Mark Morowczynski and Tarek Dawoud
2024-11-22SANS Threat Analysis Rundown with Katie Nickels | November 2024
2024-11-18Top Three CISO Strategic Issues
2024-11-11Using LLMs to Build Cyber Exercises | Ep. 5 The Incident Commander Series
2024-11-08SANS Live Training: Network Security 2024 Recap
2024-11-08SANS Live Training: SANSFIRE 2024 Recap
2024-10-24SANS Cloud Security Exchange 2024: AWS Session
2024-10-24SANS Cloud Security Exchange 2024: Microsoft Session
2024-10-24SANS Cloud Security Exchange 2024: Google Session
2024-10-16“Secure AI” is 20 Years Old
2024-10-14Supply Chain Attacks: Why Security Leaders Must Act Now
2024-10-14Navigating the Al Frontier: The Next Wild Innovation
2024-10-14From Compliance to Leadership: What Every CISO Needs to Know
2024-10-14Why Should You Attend SANS Cyber Defense Initiative 2024?


Other Statistics

The Incident Statistics For SANS Institute

There are 1,953 views in 2 videos for The Incident. Less than an hour worth of The Incident videos were uploaded to his channel, making up less than 0.03% of the total overall content on SANS Institute's YouTube channel.