Much like a real battle against cyber criminals, the pace of ELITE is rapid, automated, and completely unforgiving of missed deadlines. As a team, you will review the security defense strategies you have determined for your sector (telecommunication). Conduct independent research on your assigned sector(telecommunication) and share your findings with your team. After studying the supporting information of your sector, your team will determine and report the noted risks to your sector and your organization in the form of a three-page Risk Profile.
As a team, think about security controls for your sector and use the team’s group Discussion area to confer with your team regarding control selection. Your team should support your strategy by providing risk management techniques through the selection of security controls. These security controls will inform your risk profile and might also be used in ELITE.
From previous projects that dealt in the international domain, include nation state actors that have been deemed threats to your team sector. You can use different sources of threat intelligence to gain deeper understanding of your sector and its methods for critical infrastructure protection. Many sectors are remotely monitored using industrial control systems (SCADA) and if this is found to be true in your team sector, this description should be included in the risk profile. Also, include an analysis of possible sources and situations of insider threats and if at any time your sector was exploited by an insider threat. Include how this was detected and what means were used to recover from that type of exploitation. These measures and countermeasures could be part of a security plan and may be incorporated in your selection of security controls in ELITE.