CISA Exercises

Related topics:
Cybersecurity Best Practices, Physical Security, Critical Infrastructure Security and Resilience

CISA serves as the Administrator of the National Cyber Exercise Program established through an amendment to the Homeland Security Act. CISA Exercises conducts cyber and physical exercises with government, sector, and international partners to enhance the security and resilience of critical infrastructure. 

Exercises provide stakeholders with effective and practical mechanisms to examine plans and procedures, identify areas for improvement, and share best practices. They also inform future planning, technical assistance, training, and education efforts. 

CISA offers the following exercise services: 

  • Exercise Planning and Conduct
  • CISA Tabletop Exercise Packages (CTEP)
  • National Exercises 

Exercise Planning and Conduct Services

CISA Exercises uses the Homeland Security Exercise and Evaluation Program (HSEEP) methodology to design, develop, conduct, and evaluate exercises ranging from small-scale, limited-scope, discussion-based exercises (e.g., two-hour seminars) to large-scale, internationally scoped, operations-based exercises (e.g., multi-day, full-scale exercises).

Exercise Planning & Conduct Services

CISA Tabletop Exercise Packages (CTEP)

CISA's library of customizable exercise packages on various cyber and physical security topics. CTEPs include template exercise objectives, scenarios, discussion questions, and resources. CISA Exercises conducts monthly workshops to assist stakeholders. 

CISA Tabletop Exercise Packages
decorative photo

Cybersecurity Scenarios

Topics include ransomware, insider threats, phishing, and ICS compromise. There are specific scenarios for elections infrastructure, local governments, maritime ports, water, and healthcare.

Crowds of people riding escalators.

Physical Security Scenarios

Topics include active shooters, vehicle ramming, improvised explosive devices (IEDs), and unmanned aircraft systems (UASs). There are scenarios for specific industries/facilities to spur discussions about their unique needs.

Public crowd with cyber code

Cyber-Physical Convergence Scenarios

Physical impacts resulting from a cyber threat vector, or cyber impacts resulting from a physical threat vector. These scenarios explore the impacts of convergence and how to enhance resiliency.

CISA Tabletop Exercise Packages

National Exercises

CISA conducts and participates in various national exercises, including Cyber Storm and Tabletop the Vote.

An illustration of cyber storm

Cyber Storm

The nation’s most expansive cyber exercise and one of the few opportunities for the private sector to come together with all levels of government to address cyber response as a whole community. Cyber Storm X is slated for spring 2027.

Tabletop the Vote (TTV)

An opportunity for federal partners, state & local election officials, and election system vendors to share best practices and areas for improvement related to election infrastructure security. TTV is conducted annually during the summer.

The tabletop exercises...build bonds between technology specialists, county clerks and other officials.

State Election Director

The exercise was well-done and highlighted our strengths and opportunities for improvement.

Higher Education Business Officer

The exercise was a tremendous success, and it is helping with a checklist of things to do to become more prepared. That was possible because you put us all in a room together which created discussions. 

Higher Education Director

Additional Resources and Training

Critical Infrastructure Training

Cybersecurity Training

Contact

For more information, contact us at CISA.Exercises@mail.cisa.dhs.gov.