Objectives and Outline: Proactively mitigate and respond to cyber risks

Introduction

Lab 1: Identify and remediate a vulnerability

Lab activities:

· Create a remediation effort to coordinate the remediation of vulnerabilities

· Use the IT Remediation Workspace to remediate a vulnerability, and defer a vulnerability

Goals:

· Introduction to the Vulnerability Response application

Lab 2: Respond to and address a security incident

Lab activities:

· Respond to a security incident caused by the deferred vulnerability, and link to a major security incident

· Remediate major security incident by resolving the vulnerability

Goals:

· Introduction to the Security Incident Response application

(Optional) Lab 3: Initiate a compliance review

Activities:

· Create a compliance case to identify control failure

· Determine that CIS control objective needs to be mapped to server entity type and a control indicator is required

· Map control objective for intrusion prevention to windows server entity type

Goals:

· Introduction to the Compliance Case application

Lab 4: Mitigate cyber risk

Activities:

· Review CIS controls compliance

· Use a control indicator to proactively identify control gaps

Goals:

· Introduction to the Policy & Compliance and Cybersecurity Controls Accelerator

Lab 5: Proactively re-assess cyber risk

· Map control objective to risk statement

· Adjust risk appetite / tolerance

· Re-assess risk based on increased likelihood and initiate risk response using bulk risk assessment

· Review aggregated risk across risk and entity hierarchies.

Goals:

· Introduction to additional functionality in the Policy & Compliance application

· Introduction to the Risk Management application