Unit 5: Offensive Countermeasures
|UNIT TITLE||Create and execute an offensive countermeasures programme|
This unit develops the skills and knowledge required to build a cyber security team capable of disrupting cyber-attacks through the creation, planning and execution of offensive countermeasures programmes.
It applies to individuals, employed or contractors who are working in positions of authority and are approved to implement change within a department or across the organisation. They will have responsibility for directly supervising others.
No occupational licensing, certification or specific legislative requirements apply to this unit at the time of publication.
|Elements describe the essential outcomes of the unit||Performance criteria describe the performance needed to demonstrate achievement of the element.|
|1. Create an offensive countermeasures programme||
1.1 Establish countermeasures programme goals through consultation with senior management or client
1.2 Conduct analysis to determine capabilities required to achieve programme goals
1.3 Establish adversary simulation goals and human, technological, equipment and time resource requirements to execute adversary simulations
1.4 Establish offensive countermeasures thresholds and “guard rails” to prevent escalation of violence with adversaries
1.5 Establish a communication and approval process with senior management or the client
1.6 Establish communication procedures when communicating and negotiating with the adversaries
1.7 Develop offensive countermeasures policies, procedures, methodologies, operational security standard and supporting documents
1.8 Define and communicate roles and responsibilities to team establish clear accountabilities
1.9 Consult with senior management or client and obtain approval to proceed with the business case
|2. Plan countermeasure mission||
2.1 Assess potential risks of the offensive countermeasures mission and establish the potential impact on business if action taken and recommend mitigation strategies
2.2 Draft a countermeasures mission plan and obtain senior management or client approval to execute
2.3 Allocate tasks to team members and monitor completion of development of hacking and intelligence tools identified within the plan
2.4 Lead testing of hacking and intelligence tools against operational security requirements
2.5 Review test outcomes and make adjustments to ensure operational security requirements are met
|3. Conduct offensive countermeasure mission||
3.1 Lead execution of countermeasures mission plan ensuring adherence to communication and approval process at all stages
3.2 Conduct ongoing reviews, adjust the plan as required
3.3 Ensure security of information sensitive and confidential information
3.4 Maintaining reports and logs according to established procedures
3.5 Update with senior management and key stakeholders regarding the status of current offensive security missions, their effectiveness, and their risks
Foundation skills essential to performance are explicit in the performance criteria of this unit of competency
|UNIT MAPPING INFORMATION||No equivalent Unit|
|TITLE||Assessment Requirements for CYBCEO005 Create and execute an offensive countermeasures programme|
Evidence of the ability to complete tasks outlined in elements and performance criteria of this unit in the context of the job role, and:
The learner must be able to demonstrate essential knowledge required to effectively do the task outlined in elements and performance criteria of this unit, manage the task and manage contingencies in the context of the work role. This includes knowledge of:
Assessment may be in the form of:
Both practical skills and knowledge must be assessed.
No specialist vocational competency requirements for Assessors apply to this unit.