OpenSSF Community Day Europe
""

TTX Session

Overview

Join us for a dynamic and interactive Tabletop Exercise (TTX), held as part of the OpenSSF Community Day programming. This 60-90 minute session is designed to simulate a real-world security incident and foster open dialogue and collaboration within the open source software ecosystem.

What to Expect

The TTX is open to all Community Day attendees as audience observers and will be divided into two main phases:

  • Phase One: Scenario Walkthrough
    A moderated panel of experts will walk through a security incident scenario, each stepping into a specific role, such as an open source maintainer, a package registry operator, an open source software consumer, etc. Through roleplay, panelists will demonstrate how each stakeholder might respond during a real-world incident.
  • Phase Two: Postmortem & Discussion
    Following the scenario, panelists and selected contributors will engage in a collaborative debrief. They’ll reflect on how the incident played out, share insights, and identify opportunities for improving coordination, tools, and response processes.

This session brings together professionals with expertise in open source software production, distribution, vulnerability management, and incident response.

Audience Participation

Audience members will have the opportunity to engage through a dedicated Q&A session and can submit questions throughout the exercise using Slido or a similar platform.

Key Takeaways

Through participation in the TTX, attendees will:

  • Deepen their understanding of open source software security and incident response.
  • Gain access to a template or framework for running their own tabletop exercises.
  • Explore how OpenSSF tools and technologies can support response efforts.
  • Discover opportunities for process improvement or new tooling in security workflows.

Meet the Panelists

Breaks

Reception