1. A newly hired CISO in a National Electricity Provider (Power Company) wants to assess the impact of an organization’s Incident Response capability for the Operational Technology environment.

Your task for the new CISO is to put together a report detailing the

• Description of the differences between IT and OT in relation to Incident Response
• What synergies there are on in IT Security and OT Security and what can be used by the OT environment
• A recommendation for the CISO on whether we will have a stronger or weaker Incident Response capability through a centralized coverage for both environments and why. (Use our context/facts/trends/research)

2. Cyber incidents are a leading global business risk in 2020 and cyber threats are constantly evolving, getting smarter and more sophisticated.

Provide your opinion on whether you believe that Malware poses a significant risk from an incident response perspective? Give examples of global Cyber incidents that occurred in the last 6 months that impacted the availability of a service(s)?

• Critically assess current trends in Malware with particular focus on the impact of Covid-19
• What specific skills are important to respond to Malware incidents?
• Walkthrough an incident response methodology and describe the phases to respond to a Malware outbreak (20 Marks – (5 Marks per item addressed – 4 phases expected))

3. Discuss why it is important to have defined roles for incident response. List each of the 7 Incident Response Stakeholders Roles and appraise what they do?