Validate your breach response — before the real one happens.
Data Breach Incident Response and Reporting Procedure Simulation Exercise (DBIRRP SIMEX) Web Application stands as a pivotal approach to proactively manage potential risks and ensure compliance with National Privacy Commission (NPC) Circulars 2016-01 and 2016-03. The DBIRRP SIMEX Web App is designed to prepare personnel for real-world data breaches, mitigate risks, and effectively protect sensitive information.
Development session
A group discussion on the development of the DBIRRP SIMEX Web Application
Exercise flow
The Philippine National Police (PNP) is committed to upholding, respecting, and valuing data privacy rights in compliance with the Data Privacy Act of 2012 (Republic Act No. 10173) and its Implementing Rules and Regulations (IRR). This Privacy Notice outlines how we collect, use, maintain, and protect information obtained from individuals using or transacting in PNP services and platforms.
Data will be used for the generation of a certificate of completion.
Choose a scenario to begin the simulation exercise.
Choose a role to begin the simulation exercise.
Arrange the steps of the given options based on the scenario and role selected.
View the results of the simulation exercise.
Members of EMCSM 2027 - LT3
Executive Master in Cybersecurity Management (EMCSM) 2027 — Learning Team 3
FAQ
Common questions before running a breach simulation.
Is this a tabletop exercise or a live technical drill?
It’s a scenario-based simulation with timed injects. You can optionally add technical mini-drills.
Who should participate?
Security/IR lead, IT Ops, Legal, Privacy/DPO, Communications/PR, and an executive decision maker.
What do we need to prepare?
Your DBIRRP/IR plan, escalation contacts, reporting templates, and incident comms channels.
What’s included in the deliverables?
An AAR with prioritized remediation actions. Optional: updated templates and runbook revisions.