2025-09-06 –, Workshops
In today’s threat landscape, cybersecurity leaders often face the impossible: defend against sophisticated attacks with limited resources. This immersive workshop challenges participants to step into that reality. Acting as teams within fictional companies, attendees must strategically allocate a constrained cybersecurity budget across tools, personnel, and risk management efforts.
As the session progresses, unexpected cyber incidents, ranging from phishing attempts and insider threats to ransomware attacks and compliance audits all disrupt their plans. Each team’s prior decisions shape how well they respond, forcing rapid judgment calls and real-time prioritization.
Blending strategy, collaboration, and gamified crisis management, this workshop offers a dynamic learning experience. Participants will walk away with a sharper understanding of the trade-offs in cybersecurity investment, the consequences of underfunding, and how business decisions directly affect an organization’s resilience to cyber threats.
Can you survive a ransomware attack while underfunding your SOC? Would you fire your CISO to save cash, or double down on phishing awareness training?
In this hands-on workshop, participants join teams acting as fictional companies. Each team starts with a budget and must strategically invest in cybersecurity resources — firewalls, employees, insurance, training, etc. But the peace doesn’t last long!
As the workshop progresses, the facilitator ("Game Master") will reveal surprise cyber incidents — from phishing and insider threats to ransomware attacks and compliance audits. Each incident will affect teams differently depending on what they’ve invested in.
Teams must make fast decisions, adapt, and manage remaining funds. The goal? Stay secure, avoid major losses, and end with the most money. The team with the best balance of security readiness and financial survival wins.
Attendees will gain practical insight into the real-world trade-offs between cybersecurity spending and risk, learning how business decisions directly impact an organization’s security resilience.
Meera Tamboli is a cybersecurity professional specializing in Security Operations Center (SOC) and Incident Response. With 2+ years of hands-on experience in threat detection, analysis, and mitigation, she brings practical insights into how organisations can strengthen their cyber defenses through effective incident response strategies.
Beyond her technical expertise, Meera is a passionate speaker and mentor dedicated to empowering the next generation of security professionals. She actively contributes to the infosec community by delivering engaging, accessible training that bridges complex security concepts with real-world business impact.
Meera’s approach emphasizes collaboration, practical skills, and inclusivity, aligning with the values of BSides Bristol. Her workshops and talks focus on demystifying cybersecurity operations and helping diverse audiences build confidence in managing cyber risks.