Datacom Cyber Security Operations Job Simulation (Forage)
Cybersecurity operations simulation involving ransomware investigation, breach impact analysis, and enterprise risk assessment using real-world scenarios.
Overview
This project is based on the Datacom Cyber Security Operations job simulation hosted on Forage.
The simulation is designed to replicate real-world cybersecurity consulting and operations work, with a focus on incident investigation, breach impact analysis, and structured risk assessment for medium-to-large organizations.
The program emphasizes analytical thinking, business-impact reasoning, and clear security communication—core competencies for entry-level and graduate cybersecurity roles.
Task 1 — Security Breach Impact Analysis (Ransomware Incident)
Scenario:
A mid-sized healthcare technology provider (Orion Health Services) experienced a ransomware attack following a phishing campaign targeting internal staff.
Key incident details:
- Attack type: Phishing-led ransomware
- Initial access: Malicious Excel attachment sent to finance staff
- Compromised assets:
- Employee payroll records
- Patient appointment schedules
- Internal system credentials
- Affected systems:
- File server
- HR and finance platforms
- Backup server (partially encrypted)
- Indicators of Compromise (IOCs):
- Overseas suspicious login
- Mimikatz credential harvesting
-
.orionlockencrypted files
Work performed:
- Analysed attack vector and infection timeline
- Assessed technical, legal, financial, and reputational impact
- Identified exploited weaknesses in email security and credential protection
- Produced an executive-ready breach impact report with prioritized recommendations
Skills applied: incident analysis, ransomware reasoning, business impact assessment, executive reporting.
Task 2 — Cybersecurity Risk Assessment
Scenario:
A retail enterprise (RetailNova Pty Ltd) operating e-commerce, cloud infrastructure, and nationwide POS systems required a comprehensive cybersecurity risk review.
Assessment scope included:
- Cloud-hosted e-commerce platform (AWS)
- Payment integrations (PayPal, Afterpay)
- Salesforce CRM and SAP ERP
- Cloud-connected POS systems across 85 retail locations
- BYOD environment with VPN access
- Third-party vendors and marketing integrations
Work performed:
- Identified critical information assets and data types (PII, transaction data, behavioral analytics)
- Mapped threats based on historical incidents (phishing, ransomware, third-party data leakage)
- Evaluated likelihood and impact of risks using a structured risk framework
- Prioritized risks and proposed mitigation strategies aligned with security best practices
Skills applied: risk identification, threat modelling, RBAC analysis, third-party risk awareness, security governance.
Key Takeaways
- Demonstrated how ransomware incidents affect organizations beyond technical damage, including compliance and reputation.
- Applied structured risk assessment methodologies to complex, multi-system enterprises.
- Strengthened ability to translate technical security findings into actionable business recommendations.
- Gained hands-on exposure to cybersecurity operations, GRC principles, and threat-driven analysis.
Tools & Concepts Used
- Incident response lifecycle
- Ransomware analysis and IOCs
- Risk assessment frameworks
- Asset–threat–impact mapping
- Security reporting for executives
- Governance, Risk, and Compliance (GRC)
This project was completed as part of a virtual job simulation on Forage and reflects practical, scenario-based cybersecurity training aligned with industry expectations.