[NO]risk

[NO]risk is an interactive board game extension designed to help organizations assess and understand information security risks. During the game, teams analyze realistic scenarios, discuss potential actions, and make decisions under uncertainty.


This is an innovative method to strengthen risk awareness, build resilience, and foster collaboration, adapted to meet NIS2 and ISO 27001 requirements. The game not only develops practical skills but also helps build a robust security culture within the organization.

[NO]risk Security Card Game Full Deck Preview

Game Rules

The game is played in the style of "Top Trumps" (War), where statistics are compared to determine the winner.

  1. Deal. Shuffle the 24 cards and deal them all face-down to the players.
  2. Select. The starting player looks at their top card and chooses the strongest attribute (e.g., "Risk Score 20").
  3. Compare. All other players read out the value of the same attribute from their top card.
  4. Win. The player with the highest value wins the round and collects all the cards played.
    *Note. For "Protection Cost", a higher number (more expensive) beats a lower number, representing a more complex threat.
  5. Objective. The goal is to collect all the cards from your opponents to become the CISO Champion.

Risk Scenarios Menu

Click on a card below to reveal the detailed risk assessment and expert commentary.