Deliver incident readiness as a service
The Incident Tabletop Partner Licence is for security consultants, MSSPs, and MSPs running cyber incident tabletop exercises for multiple client organisations. Multi-client management, AI-tailored scenarios, branded reports, and volume pricing.
Built for service providers running exercises for clients
Security Consultants
You deliver incident response consulting engagements and want to include structured tabletop exercises as a service line. The platform handles the tooling; you focus on facilitation and client insight.
- Annual incident readiness assessments
- Pre-audit tabletop exercises for compliance evidence
- Post-incident review and re-testing
- Bespoke scenario design for high-risk clients
Managed Security Service Providers (MSSPs)
You provide ongoing managed security services and want to add incident readiness exercises as a recurring element of the service. Run quarterly tabletops as part of a retainer or service agreement.
- Quarterly tabletop exercises included in managed service agreements
- Annual IR testing as a packaged service offering
- Incident scenario generation aligned to client threat intelligence
- Debrief reports included in monthly or quarterly client reporting
Managed Service Providers (MSPs)
You support SME clients with IT and security services and want to help them meet regulatory or cyber insurance requirements for incident response testing. Tabletop exercises are a credible and efficient way to provide this.
- Cyber insurance readiness exercises for SME clients
- DORA, NIS2, or ISO 27001 compliance evidence packages
- Staff awareness exercises combining IT and business roles
- Incident response planning facilitation for clients without internal IR teams
From client onboarding to report delivery
Enquire about the Partner Licence
Contact us to discuss your client base, expected exercise frequency, and requirements. We'll agree pricing and set up your partner account.
Create client organisation profiles
For each client, create an organisation profile: systems, people, physical assets, and dependencies. This profile is used by AI to generate contextually relevant scenarios.
Generate and run exercises
Choose from the scenario library or generate a custom scenario using AI. Host the live exercise, control the pacing, and facilitate the debrief.
Export and deliver
Export the PDF debrief report. Deliver it to the client as part of your engagement or service reporting. Include it as audit evidence if required.
Partner Licence capabilities
Multi-client organisation management
Maintain separate organisation profiles for each client — systems, people, assets, and dependencies. Generate scenarios that are specific to each client's actual infrastructure and risk context.
Run exercises on behalf of clients
Host live tabletop sessions for each client organisation. Control the pacing, pause for discussion, reveal injects when ready. All exercise data is stored under the client profile.
Branded debrief reports
Export PDF debrief reports that can be presented under your brand or your client's. Reports include full scoring, decision path, gap analysis, and AI-generated executive summary.
Track readiness over time
Exercise history is maintained per client. Track readiness scores across exercises and demonstrate measurable improvement. Include exercise evidence in client security reporting packages.
AI scenario generation per client
Use AI to generate scenarios tailored to each client's technology stack, business structure, and risk profile. Not generic templates — scenarios built from the client's actual context.
Volume pricing
The Partner Licence is priced for service providers running exercises across multiple client organisations. Contact us to discuss pricing based on your client base and expected exercise frequency.
Help clients meet incident response testing requirements
Multiple frameworks now require documented evidence of incident response testing. Incident Tabletop produces timestamped, exportable exercise records that can be used directly as audit evidence.
ISO 27001
Annex A.5.26 — Response to information security incidents. Annex A.5.24 — Planning and preparation for incident management.
DORA (Digital Operational Resilience Act)
Article 26 — Advanced testing of ICT tools, systems, and processes using threat-led penetration testing (TLPT). Tabletop exercises support broader resilience testing evidence.
NIS2 Directive
Article 21 — Incident handling measures including response and recovery, requiring organisations to test their incident response capability.
SOC 2
CC7.3, CC7.4, CC7.5 — Incident response procedures, testing, and continuous improvement. Exercise records contribute to demonstrating operational capability.
This is not legal advice. Confirm requirements with your compliance counsel.
Interested in the Partner Licence?
Contact us to discuss your client base, expected exercise frequency, and pricing. We work with consultancies and MSPs of all sizes.