A cyber tabletop is built for one threat on one afternoon. Most enterprise exposure is wider than that. Here is where each fits, and what a rerunnable crisis simulation adds for a risk team.
A cyber tabletop walks a team through one cyber scenario in a room and debriefs it verbally. That is useful, and for a known cyber incident it can be enough. The trouble starts when the risks that keep a board awake are geopolitical, supply-chain, reputational, or social, and when they move faster than a once-a-year session can track.
Force Majeure exercises those broader crises on your real sector and country footprint, refreshes the scenario set quarterly, and writes every run into a board-ready after-action report on a published rubric.
| What matters to a risk team | Force Majeure crisis simulation | Cyber tabletop exercise |
|---|---|---|
| Scope | Geopolitical, supply-chain, reputational, social | A single cyber threat domain |
| Reusability | Rerunnable, refreshed quarterly | One-time facilitated event |
| Specificity | Built on your real sector and country footprint | Often an off-the-shelf cyber script |
| Output | Board-ready report on a published rubric | Slides and a verbal debrief |
| Cadence fit | Matches quarterly operational-resilience expectations | Typically annual |
| Best for | Testing broad crisis judgment on your footprint | Drilling a specific cyber incident plan |
Comparison reflects the productized supply we surveyed. Specific vendors differ; we are happy to map Force Majeure against whatever you run today.
If you need to rehearse a ransomware or data-breach playbook with the incident team, a focused cyber tabletop does that well. Keep running it.
When the exposure is a coup in a sourcing country, a supplier collapse, a reputational shock, or a social licence crisis, you need an exercise built for that breadth, on your footprint, and you need it more than once a year.
No, it complements it. A cyber tabletop drills one threat domain. A crisis simulation exercises the geopolitical, supply-chain, reputational, and social crises that sit outside most cyber scripts, on your real footprint, and is rerunnable rather than a single event.
When the scenario you need to rehearse is a single cyber incident with a known response plan, a focused cyber tabletop does the job. The gap appears when exposure is broader than cyber and shifts faster than an annual session can track.
A rerunnable exercise on your real sector and country footprint, scored on a published rubric and written into a board-ready after-action report, rather than a one-time slide debrief.
See the full FAQ, or the enterprise briefing.
Tell us how we can help, and what your old sims couldn’t deliver. We reply with a customized brief.
Tell us your sector, footprint, and objective.
Thanks, your request is on its way to the Force Majeure team and we will be in touch shortly. If you would rather email us directly, use this link.