In a webinar, the Private Equity Law Report’s sister services – the Hedge Fund Law Report and the Cybersecurity Law Report – investigated how firms should develop and conduct tabletop exercises. The impetus for the program was the growing importance of tabletop exercises as necessary tools for testing the functionality of a firm’s incident response plan, as well as for identifying gaps and other weaknesses in a firm’s cyber preparedness. The program featured Luke Dembosky, partner at Debevoise & Plimpton and former DOJ prosecutor; John “Four” Flynn, chief information security officer of Uber; and Jill Abitbol, Senior Editor of the Cybersecurity Law Report. This second article in a two-part series outlines how advisers can successfully conduct tabletop exercises, including their content and scope; participant engagement; common errors; and follow-up efforts. The first article addressed how fund managers can effectively develop tabletop exercises, including whether they should be conducted in-house or externally; who should participate; what role counsel should play; and how frequent and what length they should be. See “K&L Gates-IAA Panel Addresses Regulatory Compliance and Practical Elements of Cybersecurity Testing”: Part One (May 21, 2015); and Part Two (May 28, 2015).