Back to Course

Incident Response

0% Complete
0/0 Steps
  1. Incident Response
    Incident Reporting
  2. Incident Response Use Cases
    Lab Setup
  3. Role Playing - Shift Manager
  4. Demonstrating: Investigating and Escalating
  5. Report from Malware Analyst
  6. Exercise 1.1: Exploring Suspicious Executable Detected using SIEM
  7. Exercise 1.2: Investigating Multiple Failed Logins using SIEM
  8. Exercise 3: Mitigating Risk
  9. Exercise 4.1: Asking the Right Questions
  10. Scenario 4.1: Asking the Right Questions
  11. Scenario 4.2: Suspicious or Malicious?
  12. Exercise 4.2: Reviewing the Shift Log
  13. Exercise 4.3: Investigating an Unauthorized Login Attempt
  14. Exercise 4.4: Investigating Firewall Traffic
  15. Exercise 4.5: Reviewing the Security Operations Mailbox
  16. Exercise 5.1: Reviewing New Intelligence
  17. Exercise 5.2: Assessing Threat Severity
  18. Exercise 6: Recommending Remediation
  19. Exercise 7: Conducting a Post-Incident Review
  20. Exercise 8: Communicating with Operations and Senior Management
  21. Business Continuity
    Business Continuity Plan Development
    8 Topics
  22. BCP Invocation Process
    2 Topics
  23. Emergency Procedures
    7 Topics
  24. Crisis Management Team
    10 Topics
  25. BCP Seating Plan
  26. Overview
  27. Disaster Recovery
    Scope of Critical Services
  28. Network Services
  29. Application Hosting Service
  30. File Hosting Services
  31. Call Centre and Voice Recording Services
  32. Regulatory Links
  33. Thin Client Environment
  34. Voice System (Non-Service Desk)
  35. Printing Services
  36. Recovery Time Objective (RTO) & Recovery Point Objective
  37. Single Point of Failure
  38. Redundancy Requirements
  39. Alternate Locations
  40. Contact Protocol
    4 Topics
Lesson 25 of 40
In Progress

BCP Seating Plan

1.1.1               Scenario I: Omar Makram Only Not Accessible
(Borsa & Shawarby accessible)
SiteDepartmentAvailableHardwareOccupied
   PCTCLaptop 
Lebanon BranchTreasury Front Office1240011
 Treasury Middle Office 300 
 Treasury Back Office 040 
Total  740 
6-OctConsumer Ops – Finance Center2793018
 Internal Control 200 
 General Administration 400 
Total  1530 
El ShawarbyCheque Processing Center33010028
 Remittance Center 080 
 Swift 100 
 HR 020 
 Regional Ops 003 
 Corporate Service Unit 103 
Total  2206 
El BorsaInternal Control10301393
 Card Center 460 
 General Administration 130 
 Trade Finance 0134 
 Corporate Operations 053 
 BCM (IT) 006 
 UAT Team 220 
 Information Security 004 
 IT – Applications 008 
 IT – Infrastructure & Ops 005 
 Ethix Project 007 
 IB Project 0010 
 Audit & Risk Review 006 
 Legal 022 
 Consumer Ops – Maintenance 010 
 Premises & Engineering 034 
 Quality & Process Improvement 030 
Total  73056 
Remote AccessCompliance  
 Special Projects Heads  
Not operatingSpecial Projects Team  
       
Overall Total 175315762150
Equipment Requirements:
10 TCs Distribution
4Card CenterBasement – Last room to the left
1Internal ControlLast Room after Hala’s Room
2UAT TeamBorsa – H. A. Youssef Office
7Total
Required PCs
2UAT TeamBorsa – H. A. Youssef Office
4General Admin6-Oct
1Corporate Service UnitEl Shawarby
2Card Center
9Total
1.1.2               Scenario II: Omar Makram Only Not Accessible
(Borsa & Shawarby not accessible)
SiteDepartmentAvailableHardwareOccupied
   PCTCLaptop 
Lebanon BranchTreasury Front Office1240012
Treasury Middle Office 300 
Treasury Back Office 040 
Treasury Head 001 
Total  741 
6-OctConsumer Ops – Finance Center2793018
Internal Control 200 
General Administration 400 
Total  1530 
EBI Mohandessin (Outsourced) – LabsCorporate Service Unit5010349
 Cheque Processing Center 0100 
 Remittance Center 080 
 Swift 100 
 Cash Management Ops 030 
 Trade Finance 0130 
 Corporate Operations 053 
 HR 020 
Total  2416 
Additional RoomHR20001017
 Regional Ops 003 
 Trade Finance 004 
Total  0017 
EBI Nasr City  (Outsourced)Legal5002247
 Consumer Ops – Maintenance 010 
 Audit & Risk Review 002 
 BCM (IT) 006 
 IT – Applications 008 
 IT – Infrastructure & Ops 005 
 Ethix Project 007 
 IB Project 0010 
 Information Security 004 
Total  0344 
Dokki – DSU
Direct Sales Unit
Card Center3646010
   460 
Remote AccessCompliance  
 Special Projects Heads  
 Premises & Engineering  
 Quality & Process Improvement  
 Internal Control  
Not operatingUAT Team  
       
       
Overall Total 195285768153
Equipment Requirements:
10 TCs Distribution
13Trade FinanceEBI – Mohandessin
13Total
Required PCs
4General Admin6-Oct
1Corporate Service UnitEBI – Mohandessin
1Remittance CenterEBI – Mohandessin
4Card CenterDokki
10Total
1.1.3               Scenario III: OM and GC Not Accessible
(Borsa & Shawarby accessible)
SiteDepartmentAvailableHardwareOccupied
   PCTCLaptop 
Lebanon BranchTreasury Front Office1240012
 Treasury Middle Office 300 
 Treasury Back Office 040 
 Treasury Head 001 
Total  741 
6-OctConsumer Ops – Finance Center2793027
 Internal Control 200 
 General Administration 400 
 Finance 900 
Total  2430 
El ShawarbyCheese Processing Center33010031
 Remittance Center 080 
 Swift 100 
 HR 020 
 Regional Ops 003 
 Corporate Service Unit 103 
 Cash Management Ops 030 
Total  2236 
El BorsaInternal Control103013103
 Card Center 460 
 General Administration 130 
 Trade Finance 0134 
 Corporate Operations 053 
 BCM (IT) 006 
 UAT Team 220 
 Information Security 004 
 IT – Applications 008 
 IT – Infrastructure & Ops 005 
 Ethix Project 007 
 IB Project 0010 
 Finance Head & Assistant 002 
 Operation Head 001 
 Consumer Business Head & Asst. 201 
 O&T Head & Assistant 002 
 MD & CEO & Assistant 200 
 Quality & Process Improvement 033 
Total  113359 
EBI Mohandessin (Outsourced) – LabsCredit Admin4202135
ADILEASE 0142 
 RMU, DI, IR & Warehouses 030 
 Legal 011 
 HR 005 
 Consumer – CS – Complaints 030 
 HR 003 
Total  02312 
EBI Nasr City  (Outsourced)Legal4202239
 Audit & Risk Review 002 
 Retail Risk -Collection 0101 
 Retail Risk – MIS 001 
 Retail Risk – Fraud 001 
 Consumer Ops – Maintenance 010 
 Market Risk 100 
 Investigation 200 
 Audit & Risk Review 005 
 Consumer – Branch Logistics 030 
 Credit Admin 022 
 Consumer – Products 400 
Total  71814 
Dokki
Direct Sales Unit
Wholesale Business36001616
   0016 
Heliopolis  – Micro FinanceRetail Risk – Initiation20016120
Consumer Ops. 030 
Total  0191 
Remote AccessCorporate Communication  
 Marketing Team  
 Compliance  
 Special Projects Heads  
 Premises & Engineering  
Not operatingSpecial Projects Team  
       
       
Overall Total 31551123109283
Equipment Requirements:
13 TCs Distribution
4Card CenterBasement – Last room to the left
1Internal ControlLast Room after Hala’s Room
2UAT TeamBorsa – H. A. Youssef Office
3FinanceEBI – Nasr City
3Consumer OpsMicrofinance – Nasr City
13Total
Required PCs
2UAT TeamBorsa – H. A. Youssef Office
4General Admin6-Oct
2Credit adminEBI – Mohandessin
1Market riskEBI – Mohandessin
2InvestigationEBI – Mohandessin
9Finance6-Oct
20Total
1.1.4               Scenario IV: OM and GC Not Accessible                          (Borsa & Shawarby not accessible) 
 
SiteDepartmentAvailableHardwareOccupied 
   PCTCLaptop  
Lebanon BranchTreasury Front Office1240012 
Treasury Middle Office 300  
Treasury Back Office 040  
Treasury Head 001  
Total  741  
6-OctConsumer Ops – Finance Center2793027 
Internal Control 200  
General Administration 400  
Finance 900  
Total  2430  
EBI Mohandessin (Outsourced) – LabsCredit Admin5022049 
 Market Risk 100  
 Investigation 200  
 Cheque Processing Center 0100  
 Remittance Center 080  
 Swift 100  
 Cash Management Ops 030  
 Trade Finance 0130  
 Corporate Operations 050  
 Legal 020  
Total  6430  
Additional RoomsSharia’a4000334 
HR 0010  
Credit Risk 002  
Corporate Operations 003  
Credit Admin 003  
Market Risk 001  
Regional Ops 003  
Corporate Service Unit 003  
HR 002  
Trade Finance 004  
Total  0034  
EBI Nasr City  (Outsourced)Branch Logistics4420019 
 MIS & Business Analysis 100  
 Retail Risk -Collection 0101  
 Consumer Ops – Maintenance 010  
 Audit & Risk Review 002  
 Retail Risk – MIS 001  
 Retail Risk – Fraud 001  
Total  3115  
Additional RoomsBCM (IT)6000651 
Information Security 004  
IT – Applications 008  
IT – Infrastructure & Ops 005  
Ethix Project 007  
IB Project 0010  
 Finance 0011  
Total  0051  
Dokki
Direct Sales Unit
Wholesale Business36001636 
Card Center 460  
 ADILEASE 0100  
   41616  
Heliopolis  – Micro FinanceRetail Risk – Initiation20016120 
Consumer Ops. 030  
Total  0191  
Remote AccessCorporate Communication   
 Consumer Business   
 Marketing Team   
 Compliance   
 Special Projects Heads   
 Premises & Engineering   
 Quality & Process Improvement   
 Internal Control   
 RMU   
 Audit & Risk Review      
Not operatingUAT Team   
        
        
Overall Total 2894496108248 
 
 
Equipment Requirements: 
 
10 TCs Distribution 
13EBI MohandessinTrade Finance 
3FinanceEBI – Nasr City 
10ADILeaseDokki 
26Total 
 
Required PCs 
4General Admin6-Oct 
2Credit adminEBI – Nasr City 
1Market riskEBI – Nasr City 
2InvestigationEBI – Nasr City 
9FinanceEBI – Nasr City 
18Total