PECB MS Certification Mark.png
CYBER CRISIS MANAGEMENT PLANNING PROFESS

TRAIN: CYBER CRISIS MANAGEMENT PLAN 

TRAINING ORGANIZATIONS HOW TO BUILD THEIR OWN CYBER CRISIS MANAGEMENT PLAN

Stand out in the crowd by becoming a certified

Cyber Crisis Management Planning Professional (C²MP²)

Organizations globally are under constant attack from internal and external threat actors but often have blind faith that their information technology (IT) department's incident response plan will be adequate to address the response and recovery requirements for the entire organization.

As a certified Cyber Crisis Management Planning Professional (C²MP²) you will have the knowledge to help organizations prepare for a major cyber crisis by leading the development of an integrated plan that serves not only IT but also functional business and operational groups required to maintain resilience.

OBJECTIVE

A deep, hands-on immersion into the development of a Cyber Crisis Management Plan (CCMP), which like a major cyber event, requires the collaboration of both line of business leaders and their partners in information technology / information security. 

VALUE

During the fog of war (cyber crisis) is not the time to figure out how to respond. An effective response requires careful planning across an organization. This in-depth, hands-on immersion boot camp gives attendees the knowledge and tools to complete their own CCMP.

2022 WORLD TOUR: C2MP2 CERTIFICATION

 

NOTE (1): In the following schedule, the C2MEP course will be the middle day (Wednesday) of a larger 5-day program that includes the C2MP2, C2MEP, and C2MLP.

NOTE (2): SAVE 25% with Early Registration.  Early Registration ends 60 days prior to training start date for the city/location.

NOTE (3): Standard Registration ends 15 days prior to training start date for the city/location.

2022 Schedule

MARCH 7-11, 2022 | LUXEMBOURG | REGISTER
MARCH 14-18, 2022 | LONDON, UNITED KINGDOM | REGISTER
MARCH 21-25, 2022 | OTTAWA, ONTARIO CANADA | REGISTER
APRIL 4-8, 2022 | SYDNEY, AUSTRALIA | REGISTER
APRIL 11-15, 2022 | SINGAPORE | REGISTER
APRIL 18-22, 2022 | BENGALURU, INDIA | REGISTER
APRIL 25-29, 2022 | ABU DHABI, UNITED ARAB EMIRATES | REGISTER
MAY 9-13, 2022 | SAN ANTONIO, TEXAS USA | REGISTER
MAY 16-20, 2022 | CHICAGO, ILLINOIS USA | REGISTER
MAY 23-27, 2022 | NEW YORK CITY, NEW YORK USA | REGISTER
MAY 30-JUNE 3, 2022 | PARIS, FRANCE | REGISTER
JUNE 13-17, 2022 | BERLIN, GERMANY | REGISTER
JUNE 20-24, 2022 | LISBON, PORTUGAL | REGISTER
JULY 11-15, 2022 | ALEXANDRIA, VIRGINIA USA | REGISTER
JULY 18-22, 2022 |ORLANDO, FLORIDA USA | REGISTER
JULY 25-29, 2022 |LOS ANGELES, CALIFORNIA USA | REGISTER
AUGUST 15-19, 2022 | DUBLIN, IRELAND | REGISTER
AUGUST 22-26, 2022 | ATHENS, GREECE | REGISTER
AUGUST 29-SEPTEMBER 2, 2022 | MELBOURNE, AUSTRALIA | REGISTER

Step 1: Obtain Knowledge

C²MP² candidates are required to either:

 

  • Complete our online course; or

  • Attend an instructor-led Cyber Crisis Management Planning Boot Camp; or

  • Purchase our book and complete the Build This activities.

Step 2: Exam

Achieve a score of 70% or better on the C²MP² exam

  • 50 multiple choice questions

  • Two hours; delivered on the final day of the boot camp

  • Only material produced by the candidate during the boot camp is permitted as reference material during the exam

  • The initial exam fee is US$199. This is a one-time fee and is valid for one exam attempt.

  • There is an exam re-take fee of US$149 for students who do not pass the exam on first attempt.

    • One week must pass prior to attempting an exam re-take

Step 3: Plan Evaluation

The Cyber Crisis Management Plan (CCMP) and supporting materials developed during the exam will be reviewed and evaluated based on the criteria below. A score of 80% or better is required.

  • Presentation (15% of score)

  • Structure (20% of score)

  • Completeness (30% of score)

  • Content (35% of score)

NOTE: All three of the above steps will be completed during the boot camp. 

 

NOTE: Due to the time required to complete both the exam and the plan evaluation, students are advised to not schedule return flights home prior to 8 p.m.

FOUNDATIONS OF A CYBER CRISIS MANAGEMENT PLAN

  • THE PLAN CORE

    • Acronyms

    • How to Use the Cyber Crisis Management Plan

    • Define Plan Purpose

    • Response Organization

    • Response Structure

  • FUNCTIONAL INCIDENT RESPONSE PLANS

    • Functional Incident Response Plan (Detailed)

    • Functional Incident Response Plan (Summary)

    • Linking Incident Response Plans

  • RESPONSE PROCESS FLOW

    • Response Process Flow Foundation

    • Master and CSIRT Incident Response Plans

    • Response Process Flow Completion

  • CYBER WAR ROOMS & BRIDGE LINES

    • War Rooms

    • Bridge Lines

    • Cyber Crisis Logistics

  • TEAMS, ROLES & RESPONSIBILITIES

    • Cyber Crisis Executive Team (CCET)

    • Cyber Crisis Management Team (CCMT)

    • Cyber Crisis Response Team (CCRT)

    • Computer Security Incident Response Team (CSIRT)

    • Cyber Crisis Support Team

  • WORKING GROUPS

    • Communications Working Group

    • Technology Working Group

    • Additional Working Groups

DELIVERY

This course is normally delivered as a four-day program.  However, for the 2022 World Tour we will reduce the course duration by providing templates to students that will be customized during training.  Normally, students would be required to build all of the related materials.  Other than that, all aspects of the training remain the same.

OUTCOMES

Both course delivery methods lead to an end of course exam and possible Cyber Crisis Management Planning Professional (C2MP2) certification.

CYBER CRISIS MANAGEMENT ROLES, CHECKLISTS & TEMPLATES

  • PLAN OWNERSHIP AND GOVERNANCE

    • Plan Ownership

    • Plan Governance

  • IMPACT CATEGORIES, SCALES & SCORES

    • Impact Categories, Scales & Scores Table

  • CYBER ATTACK & CRISIS ANATOMIES

    • Cyber Attack Anatomy

    • Cyber Crisis Management Anatomy™

  • CYBER CRISIS INFORMATION FORM

    • CCIF Development

  • CHECKLISTS

    • Lead Incident Handler Checklist

    • Pre-Confirmation

    • Post-Confirmation

    • Cyber Crisis Deactivation Checklist

  • TEMPLATES

    • LIH-to-EIC Email Template

    • EIC-to-CCRT Incident Notification Email Template

    • LIH-to-CCRT Initial Meeting Email Template

    • Initial CCRT Meeting Agenda Template

    • Subsequent CCRT Meeting Agenda Template

    • SEIC-to-CCET Email Template

  • QUICK REFERENCE CARDS

    • CCET Quick Reference Card

    • SEIC Quick Reference Card

    • EIC Quick Reference Card

    • LIH Quick Reference Card

    • IRL Quick Reference Card

Cyber Crisis Management Program and Cert

CYBER CRISIS MANAGEMENT PLAN USAGE AND VALIDATION (TABLETOP WAR GAMES)

  • PROJECT PLANNING

    • Project Resources

    • Project Phases & Activities

    • Phase I: Plan

    • Phase II: Build

    • Phase III: Test

    • Phase IV: Implement

  • TRAINING THE ORGANIZATION

    • CCMP Training Deck

  • TABLETOP CYBER WAR EXERCISES

    • Tabletop Exercises vs. Immersive Simulations

    • Exercise Roles & Responsibilities

    • Exercise Logistics

    • Exercise Materials

    • Exercise Execution

    • Exercise Conclusion

    • After-Action Reporting

  • WRAP-UP

    • Version Control

    • Release Planning