3.1 Assess how DR and CM strategies and tactics in relation to a suspected major cyber-enabled incident

Unit DSC03: Communications and Incident Management

QUALIFI Level 5 Diploma in Cyber Security

Unit code: R/617/4636

RQF level: 5


The professional and lawful response to managing an incident can be the difference between company survival or otherwise. Poor responses to major incidents, including mega data breaches, have significantly damaged organisational reputations and financial performance. Significantly mismanaging a cyber incident can result in catastrophic personal and organisational consequences. Such business ‘impacts’ are covered in-depth within our Threat and Risk units at Levels 2, 3 and 4. and will be explored during this Level 5 unit as part of the contextual case-study learning, and isomorphic reflections, that are central to this unit.

In this unit learners will explore the types of site, personnel and equipment required in relation to planning for Incident Management and forming an organisational CERT team (Computer Emergency Response Team). They will then explore the core sub-disciplines and side-disciplines of Cyber  Incident Management: Disaster Recovery, Business Continuity Management and Crisis Management. Learners will discuss the importance of the business organisational requirement for skilled and planned communications to operate in combination with advanced and developed management responses and strategy.

Learners will develop an understanding of the security technical and generic management and leadership teaching. Much of this teaching will be particularly relevant to learners wishing to move into more advanced Information Security Management technical qualifications, including the CompTIA Security + accreditation and the Cyber Security industry gold standard: The Certified Information Systems Security Professional (CISSP).

Learning Outcomes and Assessment Criteria

Learning Outcomes. To achieve this unit a learner must be able to:

Assessment Criteria: Assessment of these outcomes demonstrates a learner can:

1 Understand the physical and human resources required to manage a major suspected cyber security incident

1.1 Explain site-set-up, staffing and organisational arrangements for major suspected cyber-related incidents

2 Apply Business Continuity Management to major incident planning and response

2.1 Assess how Business Continuity Management can be aligned and integrated into a suspected cyber-enabled incident

2.2 Explain the people, assets and processes required within a Business Continuity Plan

3 Understand how Disaster Recovery and Crisis Management are integrated into a suspected major cyber-enabled incident

3.1 Assess how DR and CM strategies and tactics in relation to a suspected major cyber-enabled incident

3.2 Explain the components of good practice in DR and CM plans

4 Evaluate the potential impact of NOT planning crisis communications and incident response

4.1 Evaluate the isomorphic lessons from major cyber breaches and company shutdowns

4.2 Analyse communications approaches and perceived failures in cases of catastrophic business loss related to IT systems failure or attack

4.3 Justify recommendations that would support a cyber- resilient approach

Indicative Content

-Equipment and location requisites

-Disaster Recovery and Management

-Business Continuity Management

-Crisis Management

-Cyber Resilience: including considerations of future-proofing and disruptive technology

Assessment Guidance

Each unit will be worth 30 credits and the qualification is designed to be flexible for learners who are already working and in demanding jobs. Every unit must be passed in order to achieve the Diploma.

Learners will be able to progress sequentially through each unit, accumulating credits as they pass each module assessment point.

During each of the four 30-credit units, every learner will have the opportunity to ‘practise’ and hone their ability to undertake the final (formal) assessment. Such non-mandatory practice will by way of completing a formative exercise/s throughout the unit.

Summative Assignment: ESSAY – Identify and explain a case study that could be translated as a weak organisational response to a major cyber-security incident. Evaluate how the organisation responded and provide recommendations that would support a more cyber-resilient approach over the next five years. (3000 words)

The standard price quoted for this assignment is up to 3000 words. For custom word count and written work, contact via Click here → Whatsapp UK, OR Whatsapp Middle East  ← Click here OR Live Chat.


Email: care@academiasupport.co.uk

100% Plagiarism Free & Custom Written, Tailored to your instructions