Certified Disaster Response and Recovery Manager

Business Continuity and Disaster Response and Recovery is the process of preparing processes, policies, and procedures that follow in the event of a significant and unplanned operational disruption. The Certified Disaster Response and Recovery Manager training course prepares students for industry certification in Business Continuity planning and Disaster Recovery missions.

As businesses face a wide range of daily risks – including cyber-attacks, human error, technical failures, and natural disasters – it is vital they create practical plans to sustain their security posture, financial health, and industry and brand reputation to maintain long-term success. Students will cover topics such as: BCP Design and Development Strategies, Risk Management Frameworks, Qualitative and Quantitative Analysis, Creating Asset Inventories, Recovery Site Management, Reviewing Cloud Service Agreements, Cloud Data Security Strategies, and the Impact of Legal Requirements on Cloud Storage Solutions.

Register Today for the Next Training Session

The Certified Cyber Incident Response Manager course is a component of the career progression track that supports the required Categories, Specialty Areas and Work Roles as defined by the National Initiative for Cybersecurity Education (NICE) Cybersecurity Workforce Framework.  It provides a common language to speak about cyber roles and jobs and can be referenced to define professional requirements in cybersecurity.

CYBER POLICY AND STRATEGY PLANNER
(OV-SPP-002)

PARTNER INTEGRATION PLANNER
(CO-OPL-003)

SECURITY CONTROL ASSESSOR
(SP-RSK-002)

THREAT/WARNING ANALYST
(AN-TWA-001)

KNOWLEDGE MANAGER
(OM-KMG-001)

ALL-SOURCE ANALYST
(AN-ASA-001)

Course Outline and Knowledge Points

Introduction to Disaster Response Management

  • The BCP and DRP Convergence
  • Key BCP and DRP Definitions
  • BCP Key Components
  • DRP Key Components
  • Desired State of Security Challenges
  • Evolution of Sustainable Policies

Overview of The Business Impact Analysis

  • Roles of a Business Impact Analysis
  • Benefits of a Business Impact Analysis
  • Managing a BIA Project
  • Selecting a BIA Project Manager
  • BIA Data Collections
  • Presenting Results to Management

Selection of Risk Management Frameworks

  • The Key Attributes of Risk
  • Risk Management Program Development
  • Asset Inventories and Resource Profiles
  • Risk Management Frameworks
  • Vulnerability Assessment ≠ Risk Assessment
  • Third-Party Service Providers

Qualitative and Quantitative Analysis Strategies

  • Qualitative and Quantitative Analysis
  • Defining Severity
  • Estimating Severity and Likelihood
  • Asset Value Considerations
  • Calculating SLE, ARO, and ALE
  • Sources of Respected Statistics

Implementing the 5 Levels of BCP Test Progression

  • Developing Testing Goals
  • Benefits of BCP Testing
  • BCP Test Progressions
  • Potential Testing Scenarios
  • Training and Awareness
  • Benefits of Certifying the BCP

Creating an Emergency Operations Plan

  • The EOC in Limited Emergencies
  • EOC Scope and Purpose
  • EOC Material Requirements
  • EOC Command Functions
  • EOC Control Functions
  • Mobile EOC Characteristics

Recovery Site Management and Workflows

  • Assembly Point Considerations
  • The Recovery Site Manager
  • Recovery Gantt Chart Function
  • Work Area Considerations
  • Digital Communication Considerations
  • SMS Notification Methodology

Preparing for Epidemics and Pandemics

  • Seasonal Flu vs. Pandemic Flu
  • Flu Epidemics: Facts and Statistics
  • Impacts of Flu on Business
  • The Epidemic / Pandemic BCP Team
  • Epidemic / Pandemic Risk Assessment
  • Post-Epidemic / Pandemic Considerations

Introduction to Cloud Computing Concepts

  • Definition of Cloud Computing
  • Cloud Computing Characteristics
  • Defining the Existing Operational State
  • Benefits of Cloud Computing
  • Cloud Computing Service Models
  • Cloud Computing Deployment Models

Cloud Data Storage and Security

  • Cloud Data Life Cycle (CDLC)
  • Cloud Architecture: Volume Storage
  • Cloud Architecture: Object-Based Storage
  • The Content Delivery Network (CDN)
  • Security Information and Event Management
  • Data Loss Prevention: Egress Monitoring

Cloud Security Risks and Threat Vectors

  • Cloud Platform Risks
  • Private and Public Cloud Risks and Threats
  • Vendor Lock-Out
  • IaaS / PaaS / SaaS Risks and Threats
  • Virtualization Risks and Threats
  • Cloud-Specific BIA Risks

Cloud Security Responsibility and Administration

  • Foundations of Managed Services
  • Responsibilities by Service Type
  • Shared Responsibilities by Service Type
  • Lack of Physical Access
  • Lack of Auditing Ability
  • Shared Responsibility: Monitoring and Testing

Distributed Cloud Networks: Legal Considerations

  • Criminal and Civil Law
  • Administrative and International Law
  • Doctrine of Proper Law
  • EU Data Protection Directive
  • Personal and Data Privacy Issues
  • Forensic Requirements

Regulation and Compliance in Cloud Computing

  • Diverse Geographical Legal Jurisdictions
  • Organizational Cloud Policies
  • The Cloud in Enterprise Risk Management
  • Risk Management Frameworks
  • Risk Management Metrics
  • Contracts and Service-Level Agreements

Understanding the Structure of Legal Contracts

  • General Contract Structures
  • Prime Clauses
  • General Clauses
  • Boilerplate Clauses
  • SLA and Contract Review Process
  • General Contract Review Checklist

Reviewing Contracts and Service Level Agreements

  • Provisions of an Enforceable Contract
  • Myths and Misunderstandings in Contracts
  • Contract Negotiation Strategies
  • Including a Matching Right
  • Attempting a Contingent Agreement
  • Searching for Post-Settlement Settlements

Course Learning Objectives

Upon successful completion of the C)CIRM training program, participants will be able to:

  • CLO #01: Recognize the key components of business continuity and disaster response planning, map planning strategies to organizational objectives, describe appropriate authority documents, list challenges to the desired state of security, and describe the evolution of sustainable policies.
  • CLO #02: Explain the role and importance of a business impact analysis, tangible and intangible costs, data collection methods, BIA program management, key personnel considerations, exception and assumption workflows, and presenting BIA data results to organizational leadership.
  • CLO #03: Perform quantitative and qualitive analysis labs to calculate single and annual loss expectancy, estimate severity and likelihood probabilities, examine asset value considerations, and use sources of respected statistics to create SLE, ALE, and ARO models for the organization.
  • CLO #04: Compare disaster recovery options, describe recovery site management and workflows, and discuss the roles and importance of work area considerations, key personnel selection, validating successful recoveries, and digital communication systems and methodologies.
  • CLO #05: Organize a risk management program strategy focusing on key components such as risk management frameworks, asset inventories and resource profiles, analysis methodologies, vulnerability assessment, cost estimate challenges, and third-party service providers.
  • CLO #06: Evaluate cloud computing service models, architecture and security considerations, risks and threats posed to cloud services, regulatory and compliance requirements, cloud provider and customer responsibilities, and the structure of contracts and service level agreements.

Course Training Materials

Exam Prep Guide

Course Workbook & Labs

Lab Images (if Applicable)

Practice Assessment Quizzes

40-Hour CPE Credit Certificate

Knowledge Assessment Examination

Knowledge Assessment Exam

Upon completion of online courses, students will be prepared to sit for the knowledge assessment exam. The online examination will consist of True/False, Multiple Choice, and Fill in the Blank questions. The exam may be taken at any time within 6 months of completing the certification course.

Students will have two hours to complete a computer-based examination consisting of 100 questions. A score of 70% or higher is required to earn the certification. Upon successful completion of the exam, students will be sent a hardcopy of their certification and their CPE credit documentation via email (PDF format) within 72-hours of the exam date.

The examination is “closed book.” However, students will be allowed to use their notes on material presented during the course as well as their Course Workbooks.