Operational Resilience Series
AI Interupted: A Multi-Sector Exercise
January 28th, 2026, 1 pm ET
Join us to Test Your Resilience in the Face of AI
January 28, 2026 — Cross-Sector AI Resilience Tabletop Exercise
Cybersecurity, IT, risk, and operations leaders will work through a disruptive, AI-driven scenario developed by the Business Resilience Council—pressure-testing plans, decisions, and coordination under real-world constraints.
Exercise Goals Include:
1. Identify areas of dependence on AI and the risks those dependencies create.
2. Identify gaps in governance, trust, and oversight of AI systems, including agentic AI.
3. Identify vulnerabilities in existing processes and controls that could be exposed by AI misuse or failure.
4. Identify where AI adoption may outpace organizational policies and cross-functional understanding.
5. Identify strategies to strengthen organizational and cross-sector readiness for AI-driven disruptions.
6. Explore how AI threats could exploit organizational dependencies and response weaknesses.
Why Attend this Exercise
The GRF Business Resilience Council’s complimentary TTX series challenges teams to test resilience, refine incident response, and share best practices through panel-led discussion with real-time inputs and data aggregation. Participants deepen their understanding of service dependencies and their organization’s ability to adapt and maintain operations across threat types.
Outcome
Expose failure paths in AI workflows, uncover gaps in disruption handling, test Minimum Viable Service Levels (MVSLs), and gain actionable insights—advancing collective resilience against operational disruptions.
ACH Payments Disruption Exercise - After Action Report - In spring 2024, Global Resilience Federation and Nacha ran free half-day tabletop exercises simulating a destructive wiperware attack and major ACH outage. Sessions strengthened operational resilience by sharing practices and drilling IT ops, prioritization, media handling, and law-enforcement/regulatory engagement as facilitators advanced timed injects.
Past Exercises
All-Sectors Payment Disruption Exercise - After Action Report - In fall 2024, Global Resilience Federation ran free cross-sector tabletop exercises on a widespread payments disruption caused by coordinated attacks on third-party platforms and a surge of misinformation. Participants made timed decisions to surface priorities, vendor dependencies, and comms gaps, reinforcing the Operational Resilience Framework and sharing best practices.
FAQs
For any questions, please reach out to Brian Katula at bkatula@grf.org
How will the exercise be conducted?
The Communications Disruption Exercise will challenge organizations to test their resilience against communications disruptions, refine contingency plans, and share best practices during a panel-led discussion. Participants are polled anonymously. The crowdsourced responses are discussed by the panel, analyzed, and later captured in an after-action report. Participants will further their strategic understanding of service dependencies and their organization’s ability to adapt and maintain operations.
Do I need to prepare anything in advance?
While no formal preparation is required, participants will benefit from reviewing their organization’s incident response and operational resilience plans. Additionally, reviewing the Operational Resilience Framework is highly encouraged.
Will this be a live cyberattack simulation?
No. This is a strategic discussion exercise, not a hands-on technical simulation. The focus is on decision-making and response planning. IT and third-party dependencies will be on display, and business priorities will determine response objectives.
How long will the TTX last?
The exercise is expected to last 4.5 hours, including scenario discussions and a debrief.
Will there be a post-exercise report?
Yes, an After-Action Report (AAR) will be provided to participants, capturing key findings, lessons learned, and recommended actions.