Most MSPs think they have incident response under control, at least until chaos hits. In this live episode of Get NIST-y, hosts Jared Casner and Michael Zbarsky sit down with Bob Miller, CEO of IR Game and Chief Evangelist for Right of Boom, to explore why even the most “mature” IR plans crumble under pressure and what real-world readiness actually looks like.

From the limitations of tabletop exercises to the emotional gap that keeps decision-makers complacent, Bob shares hard-won lessons from decades in the trenches. The trio dives into:

• Why traditional tabletop exercises fail to simulate true incident pressure

• How emotional engagement and muscle memory are key to effective response

• The overlooked human and legal pitfalls, from communication missteps to conflicts of interest with insurers and forensics teams

• Why 80% of incident response is not technical, it’s business continuity, PR, compliance, and people under stress

• How to align your IR plan with frameworks like NIST and HIPAA (without tripping contractual landmines)

It’s a masterclass in turning theory into muscle memory, packed with war stories, practical guidance, and a few “oh sh*t” moments every MSP can learn from.

Want to get your own questions answered? Head over to https://blacksmithinfosec.com/ask!