BTEC Level 3 IT - Unit 11 - Cyber Security & Incident Management - Part 01 - INTRODUCTION

[Music]

welcome back welcome back everyone so

this is gonna be B tech level three it

unit 11 cyber security so taking a

slight very small break from engineering

moving back to it I'm doing cyber

security first I will try my very best

to do Unit 14 as well before the January

exam but if not bear with me I'll get it

done by summer all right all right so

first things first let's go through the

course information this is an exam unit

there's no coursework whatsoever the

name of the unit is actually unit 11

cyber security and Incident Management

it's in the name to be fair the exam is

set for either December stroke January

or may stroke June so what happens your

school gets sent the exam papers and

they have a time period in which they

have to do it so they normally get sent

the papers in December maybe early

stroke mid-December and they have on

until the end of January to complete it

or they get sent it in May and they have

until June to complete it that's how it

normally works

the unit is a 120 guided learning hours

unit so very big unit very similar to

unit one but in my opinion my estimation

unit one was the bare minimum that every

single it person should know before they

leave secondary school or when they go

to second or when they come into college

whereas this is a lot more beef this is

a lot more specific it's a it's a

beefier unit because it's more specific

so there are five assessment outcomes

that should be outcomes I will go over

these the exam comes in two parts parts

well part A and Part B let me put my pen

on part A should be roughly five hours

it says on the paper anyway and Part B

should be four hours there's this thing

called the specification document this

document is to help you I will show it

to you at some point in this video as

well it's completely completely free I

will provide a copy of this in the

description I'll host it on my Google

Drive for a while before the website

goes up and you guys please feel free to

go there download it make a copy of it

printed it's gonna have every single

piece of information you need for this

exam there is a specification for every

other exam and every other piece of

coursework I will provide those in due

time but for now unit 11 go to the

description you're probably going to see

something labeled unit 11 spec or unit

11 specification click on it is going to

be a PDF and I'm going to show you what

it looks like and maybe how to use it as

well

so the assessment outcomes are again

this is going to be on the spec I

literally just copied it from the spec

assessment objective or outcome one is

to demonstrate knowledge and

understanding of technical language

security threats system vulnerabilities

and system protection methods and

implications resulting from successful

threat

again I will explain all of this very

wordy not very clear not very concise

but I will explain it assessment outcome

2 says apply knowledge and understanding

of security threats system

vulnerabilities and security protection

methods and implications in order to

risk assess systems and select

appropriate tools to secure them I will

explain this again

AO3 is to analyze forensic evidence data

and information to identify security

breaches and manage security incidents

ao4 evaluate protection methods and

security documentation to make sorry to

make reason judgments and draw

conclusions about their efficacy ao5 be

able to plan a secure computer network

and manage security incidents with

appropriate justification this just

means why we always need to know the why

so those are the assessment outcomes

these are the things that you will have

to do on the exam these are very very

badly worded for 16 17 18 year olds who

had just been introduced to it in my

opinion but that's that's why I'm here

to help I'm going to try and explain as

clearly as I can I think this is a

cumulative unit that means you will need

information learn from other units to

fully understand this one for example I

think as I've said before unit one is

like the very very basic the most basic

thing that every single person needs to

learn before they approach any other

unit I think really and truly the only

other unit you can do without knowing

much about uniq one is probably unit 3

because that's social media that's very

Theory heavy that's very research heavy

not very I.T more businessy in my

opinion this is a massive undertaking

it's a big unit very very big unit again

120 guided learning hours so similar to

unit 1 unit 2 I believe unit 3 don't

quote me on that I don't remember this

is supposed to be a look at the exam

paper not of the exam paper so as I said

here I want to jump straight in you will

get the exam paper and some templates to

fill in that's in the exam that's what

you're going to get

so for example you have your part A and

you're going to have the exam paper in

front of you and they're going to give

you some templates on a PC so this is a

PC based exam this is not going to be

like unit one where you sit and write

everything it's going to be like unit 2

where you're given an exam paper in

front of you and you have to do some

work on the PC in a Word document in a

template and at the end you submit those

templates only part A stuff you get so

the first thing I have on my list here

this that's the actual exam paper this

is 99 going to be printed for you some

schools might choose to give it to you

as a digital copy to try and save paper

for whatever reason that's perfectly

fine it's going to be exactly the same

thing you might be giving this on your

user area on your blank user area but it

doesn't matter then you get a risk

assessment and then you also get a

security plan now these are given to you

as technically Word documents but

they're actually RTF Rich text format

documents if you remember from unit one

we have different file formats so

normally I don't have a touchscreen

laptop with me so bear with me a word

document is d-o-c oh sorry about the

battery writing

d-o-c-r-d-o-c-x that's a Word document

this is an r t o f instead I'm going to

leave it there this is an RTF document

instead it can be edited with Microsoft

Word so don't worry that is not a word

document when you see it and you see RTF

it should not be an issue you can still

use most word processors to edit RTF

documents part A sections and activities

part A has a torture of three activities

again this was taken from a 2018 past

paper and it's the same now in 2022 well

when you do it in 2023 for some of you

guys Activity one is going to be a risk

assessment activity two is going to be

the security plan so we have the

template for that already and Activity

three that's going to be a management

report I do not believe you get this

template here you only get the first two

so you'll get the first two as an RTF

stroke Word document You're Gonna Fill

those in and you're going to export them

as PDF documents but I'm going to show

that entire process as well and Activity

3 you don't get that one

part A again oh well I mentioned it here

actually you get Activity one activity

two but you do not get Activity three

uh Part B stuff so for Part B we have

two activities we get the exam paper

again and this is the template that we

get

and what we get fact what we have to do

sorry for activity

um b or for Part B of the exam paper is

we have to do an incident analysis and

we have to do a security report these

are the two activities which we have now

this does take quite a while I believe

activity b or Part B the second exam

paper okay let me just say exam paper

one exam paper two it comes in two parts

paper B and paper a paper B is going to

be I believe roughly four hours as I

said before and paper a is roughly going

to be five hours for exam paper B you

only get the forensic analysis you will

have to create the other document but

it's not very hard again I'm going to

show you guys exactly how to do that so

please don't worry

this is as I've mentioned a big unit

there is a lot to learn you do not have

the time I will I don't have the time to

go over all the content you have to

learn so this is why I've said you guys

please please please please have a look

at the specification I'm going to show

what the specification looks like now

I'm gonna show what the delivery guide

looks like as well so if I can go to my

folder here one second my mouse is

playing up let's do that and I have my

specification here this is my

specification document let me zoom in as

much as I can this should be given to

you free by your teachers well it's

available on the website for free as

well I'll put this I'll put the links in

the description and when you scroll

through this ideally you want to read

all of this but the parts I want to

focus on are going to be down here for

example the content you need to learn

for this unit I will not be able to sit

here and teach you every single thing I

simply don't have enough time so what

I'm going to suggest instead is that

everyone gets a copy of the

specification which is this document

here your teacher can give it to you I'm

going to have a copy in the description

I'm going to upload it to my Google

Drive and share a link in the

description that link should work for a

very very long time until I have a

website up and running what I've said

here is show example internal and

external threats this is going to be

from the spec let's just say for

argument's sake right you have no

information you don't know where to go

to find anything the spec is where you

go if you look here I'm going to try and

highlight it here it says understand how

internal threats occur including and it

gives you a list of things and then the

second bullet point says understand how

external threats function including and

it gives you a list of things right this

list here from A1 let me scroll zoom out

and scroll down from A1 A2 A3 all the

way down to the very end of this

document which I am going to share with

you guys shows you every single thing

you need to know for this exam so let me

go back to my example let's just say for

argument's sake you you don't think that

you're are getting enough information

from your teacher from the booklets or

from whatever help sheets you found

because there's not much online unless

your school decides to purchase stuff

right what you could do which is what I

suggest in any case grab a copy of this

grab some water and Google is going to

be your best friend so for example

internal threats that occur we know that

cyber security we can have both internal

and external threats internal threats

they give you a massive list employee

sabotaging theft and again if you have a

basic understanding of the English

language this should be relatively easy

to understand but if you don't that's

perfectly fine Google what this means

employee sabotage and theft so if

someone sabotages something that means

they they purposefully they willfully go

ahead and try to damage it or cause it

to malfunction in some way right and we

know what theft is already so go through

this entire list and it will tell you

every single thing you need to know for

example this first one here is for

internal threats this second bullet

point here and everything under it is

for external threats and then the next

one says understand that the impact of a

credible threat is likely to result in

some form of loss such as and it tells

you the types of losses operational loss

Financial loss reputation laws

intellectual property loss and again if

you have a basic understanding of

English you should be able to understand

what these words mean and how they come

together but again if not just go ahead

and do some research it's very very

simple research what is operational loss

give examples of operational loss maybe

even do some research companies that

have had operational loss because of

cyber security incidents

we know that many of these big companies

get hacked all the time Yahoo gets

hacked probably the most Google has been

hacked Amazon's been hacked they all get

hacked at some point maybe not to the

extent where they lose people's details

all the time like I think British

Airways did a few years ago but they

still get hacked in any case I'm going

to move on from this I'm spending too

long on that the next thing I have is a

short example of the delivery guide this

is another document which your teacher

will have a copy of you might not but

that's perfectly fine what this is quite

simply this is the exam board called

Pearson's this is the people that give

us the content this is their

um let's say template of how they think

us as teachers and lecturers how they

think we should teach this unit

it's not something that most of us stick

by or have um people don't have to

follow this they don't have to stick by

it however it's a good starting point

just to help us help you

so I do think every student should have

a copy of this not a particularly long

document for 120 um guiding learning

hours unit it's a nice read it gives you

a nice introduction to things and if you

don't understand certain things this

might add some more context so I won't

go through this one because I think it's

quite simple um for example it says here

unit 11 introduction how to introduce

the unit you guys should read through

these two pieces of well these two

documents and figure out some stuff for

yourself for people who are doing this

level of it you're probably going to go

into an apprenticeship or uni no one

from this point on is going to sit you

down and teach you everything you know

let me just put that out there from now

many of you think it's going to go to

you're you're going to go to UNI and

it's going to be the same thing it won't

be the same thing

please please please put some work in

and learn all right next uh stage I have

what next slide I have

uh I'll just explained these so I'm

going to completely skip this one

because I just explained that

so these are the files I'm going to add

for you guys the the specification

document is my pen active I believe so

specification document check I'm going

to give you delivery guide as well I'm

going to give you uh the 2018 past paper

part A and I'm going to give you part B

and I'm going to provide the examiners

report this is a document again that I

think is very very very important the

examiner's report tells us the teachers

and tells you the students a perfect way

to answer a question what they've done

they've sat down and they've looked at

most of the 2018 past paper and they've

said you know what this person got a

really good Mark for this answer let me

show you what the person typed for their

answer and explain why it was a good

answer

uh for Activity one for example activity

two this other person somewhere else in

the UK answered this question really

really well let me show you what they've

answered how they've answered it and let

me explain to you why this specific

answer is a really really good answer

um I was going to open this one again

but I'll leave it for now you guys go

through it it gives you really really

good information so please have a look

at all of these documents and they're

all going to be in the description below

I've provided them completely free if

you if you don't already have access to

each of them

all right uh yeah I mentioned this one

already please have a look at the

documents uh what I will show

I will show how to do each activity so

as I've mentioned I don't think I have

mentioned it actually there are a total

uh I did three activities in part A of

the paper and you have two activities in

Part B of the paper so you know let's

just say five activities in total

I will use examples from previous exams

and exemplars or just random stuff

they've created for us to use I will try

to always explain the what and why so

what is this and why do we do this well

why is this important

words and terms to know there are a lot

of words and terms you need to know for

this unit again 120 guided learning

hours it's a nine hour exam what I would

recommend what I've done for my students

in the past is I've created a random

document an empty document I don't fill

this document in I create an empty

document and every single lesson I have

or every single time they read something

and they have to ask me oh sir what's

What's um what does this word mean I'm

like I don't know go and Google it go

and find out go and research it yourself

the reason being

I think when people go and research for

themselves and they understand something

and they can rewrite it in their own

words that's much better than me giving

them my definition so I recommend you

guys whatever word you find whatever

term you don't understand you came

across for the very first time stick it

in that Word document

go on research it use your books your

library your internet I would recommend

the internet much quicker much more

efficient use the internet find a good

definition that you understand don't

copy and paste it rewrite it in your own

words make it stupid simple as stupid

simple as possible so that you can

explain it to a non-it person I always

use the example of an English teacher

because typically not very I.T Savvy

please don't kill me English teachers

right

you should be able to explain it to an

English teacher or I don't know a math

teacher or a physics teacher and they

should be able to understand what you're

saying without much difficulty

so you should be able to define or

explain each term or word that you find

that's unfamiliar to yourself This is a

hint for the exam paper it might seem

very obvious but please read the entire

paper some of it might not seem useful

but it is for example there's a section

on there called instruction to Learners

section and it tells you the names of

the files that you need to submit so

activities one two three four and five

they all have to have specific names

with specific details so I believe it's

going to be like activity name so it

might be Activity one then your

registration number which for in my case

might be nine zero nine zero nine zero

then my my center number might be one

two three four five then my name might

be Bob the Builder is my surname then my

first name might be king but whatever

the case is read the entire paper again

I will go over this with you guys but

read the entire paper and it will tell

you exactly what you need to name your

documents as in this particular section

anyway but read the entire paper

uh top tip spend the bulk of your time

focusing on Cyber threats or the

potential of such threats on the

examiner's report again people have

they've mentioned things like fires on

floods are threats 100 their threats and

they can cause massive negative impacts

on the company as well however because

this is mainly targeted at cyber

security threats we need to focus on

those so highlighting non-cyber threats

like fires on floods is not wrong

however getting too detailed is a waste

of your time you don't want to speak

about how a fire could break out and how

a fire could do this and how a fire

could do that when you need to spend

that time looking at the cyber security

threats and how to solve those issues

the fire issues are typically relatively

easy one to solve right and same for

flood but the Cyber issues that's why

you're here you're a cyber security

specialist not just a risk assessment

person right you're a cyber specialist

uh templates

okay show the templates given for parts

A and B all right let me do that now so

if I go into my past papers and I go

into 2018 I'm going to go into this one

here and the template we get is called

risk assessment that's the first one and

we also get a second one called security

plan let me just open the first one to

show you what it looks like and again

this is not an actual word document this

is an RTF file but it opens in a word

and it looks exactly like a Word

document this is what we're going to

have to make use of I will explain what

this table is and exactly how to use it

in the next section and I'll show how to

use it in the section after that and and

the assessment section as well of course

and next we have security plan so we

don't actually have the third thing that

we have to do this is it here I will

again show all of this I just wanted to

show you guys everything that you will

get in the exam so this is everything

that you'll get for part A this is the

exam paper that's most likely going to

be printed by your schools or the

examiners or whoever gives it to you and

this is what you get on your user areas

so you're going to be given a blank test

dummy thing to log into and this is what

you should see there in activity um

sorry in the part a paper section and

for Part B very similar this is the exam

paper itself apart B slightly different

slightly different information and this

is the one document you get forensic

analysis and this is all you get in

there nothing else but again I will go

through all of this if I can by January

anyway it's now December 24th 2022 I'm

going to try and get through as much as

I can

and that's it let's see what's next

that's it so hopefully that was useful

to you guys a bit long-winded I know but

it is a very very important this is a

big unit so thank you for watching

subscribe like pay attention share with

all your friends

[Music]