Contact Us
Contact Us
Login

ICS Threat Baselines & Tabletop Exercise Services

Dragos prepares teams for OT threats through intelligence-driven threat baselines and tabletop exercises using real attack scenarios on your systems.

Contact Us
Strengthen Your ICS Defenses with Real-World Threat Scenarios
Dragos Threat Baselines and Tabletop Exercises help organizations anticipate, detect, and respond to cyber threats through structured workshops. These services use real-world threat scenarios and adversary TTPs specific to your environment to inform your defensive plans. Scenarios like trusted vendor compromise, ransomware, and PIPEDREAM are among the real-world scenarios you may need to protect against.
Resources
Services Benefits
Use Cases
Dragos Difference
Resources
Request Platform Demo
Expert-Led Threat Analysis for OT Security Preparedness

Our expert team leverages industry-leading OT cyber threat intelligence to deliver actionable insights across electric, oil and gas, water, transportation, manufacturing, and other critical sectors.

Tabletop Exercises Test Your ICS Defenses
Evaluate cyber incident response processes and tools while identifying gaps in your ICS cyber defenses to reduce operational and business risks effectively.
Reduce Adversary Dwell Time
Gain greater awareness of the ICS threat landscape, improve readiness to combat targeted threats, and implement effective response procedures to accelerate mean time to resolve incidents.
Reduce Operational and Financial Impacts
Faster engagement, investigation, and resolution mean more efficient recovery procedures that can dramatically reduce downtime, safety, environmental, brand, and downstream impact costs.
Prioritize Security Investments
Use real-world threat scenarios to identify weaknesses and investment priorities by evaluating threats against your critical “crown jewel” assets.
Tabletop Exercises Datasheet Thumbnail
datasheet
Two Complementary Services for OT Threat Preparedness
Dragos provides Threat Baseline workshops that use real-world intelligence to evaluate security risks, plus Standard/Custom Tabletop Exercises that simulate threat scenarios to test incident response. Both services feature expert guidance and practical recommendations.
download datasheet
What Our Customers Are Saying
  • What’s been helpful with Dragos is not just the technology, but the expertise that they bring to the table. Koch can now identify ICS/OT threats, rapidly pinpoint malicious behavior on their ICS/OT networks, provide an in-depth context of alerts, and reduce false positive alerts for complete threat detection.
    Gabe Green, CISO Koch Industries
  • We were initially focused on anomaly detection software and originally thought that we would benefit from the ability to see and react to alerts. But we quickly realized that the majority of those solutions just weren’t as mature as we needed. This awareness led us to consider OT visibility platforms in general, and the conversation pretty much started and stopped with Dragos.
    CISO, Electric and Water Utility
  • With the visibility provided by the Dragos Platform, automated monitoring capabilities alert the security team to potentially malicious behavior between assets and communications, so they can rapidly investigate and respond before attackers can progress.
    CISO, Oil & Gas
Why Choose Dragos Expert Services

Dragos combines deep industrial cybersecurity expertise with comprehensive threat intelligence to deliver unmatched tabletop exercise experiences. Our team includes OT security analysts, incident responders, and industrial control systems experts.

Expert-Led Facilitation
Our certified facilitators bring real-world incident response experience and deep understanding of OT environments to create realistic, impactful training scenarios.
Intelligence-Driven Scenarios
Leverage our extensive repository of real-world attack data, adversary tactics, and industry-specific threat intelligence for maximum realism and relevance.
Actionable Recommendations
Receive detailed post-exercise reports with prioritized findings and specific guidance to improve your incident response plans and security posture.
OT Cybersecurity Guide Thumbnail
Guide
Benchmarking Guide: Assess Your OT Cybersecurity Maturity
Download a step-by-step guide to build your OT cybersecurity program using SANS ICS 5 Critical Controls. Get implementation milestones, practical guidance, and real-world advice to strengthen your industrial security.
June 14, 2024 03:19 PM
View Infographic
Solution Brief
Integrated Technology from Dragos and Fortinet
September 8, 2025 10:54 AM
Solution Brief
Integrated Technology from Dragos and Palo Alto Networks
September 8, 2025 10:08 AM
Solution Brief
Dragos Solutions for Federal Agencies
September 3, 2025 11:50 AM
Solution Brief
How Dragos Helps You Meet Maritime Cybersecurity Regulations E26 and E27
September 3, 2025 11:50 AM
FAQs
Common questions about protecting food production operations from cyber threats and implementing effective OT security programs.

Dragos serves electric utilities, oil and gas, water and wastewater, transportation, manufacturing, mining, building management systems, data centers, and other critical and industrial infrastructure sectors with industry-specific threat scenarios.

Standard TTX uses pre-developed scenarios with minimal customization for 2-3 participants. Custom TTX includes additional narrative tailored to your unique assets, vendors, personnel, and network architecture with expanded participation.

Threat Baselines identify and prioritize relevant threat scenarios through structured workshops, while Tabletop Exercises drill and test your response to those scenarios, creating a comprehensive preparedness program.

Services include threat briefing packs, facilitator handbooks, participant materials, exercise agendas, and comprehensive post-exercise reports with actionable recommendations and prioritized findings.