Intel uses a war game process as an essential part of their risk management program. The primary outcome of the war game is to identify areas that need change or improvement in the security infrastructure, and provide both the data and business process support to make those changes happen.
War gaming is typically thought of as a simulation or drill, and can be used in that manner in a corporate setting to validate a security control. In the local Intel Premier IT Professional best practice seminars, Timothy Casey, CISSP, and other Intel IT security experts conduct workshops to train others to use this process. The techniques as well as additional uses are defined in this white paper.
Corporate Information Security War Game Process
192KB, PDF
Read the new white paper detailing Intel IT war games methodology.