Datacom Cyber Security Operations Job Simulation (Forage)

Cybersecurity operations simulation involving ransomware investigation, breach impact analysis, and enterprise risk assessment using real-world scenarios.

Overview

This project is based on the Datacom Cyber Security Operations job simulation hosted on Forage.
The simulation is designed to replicate real-world cybersecurity consulting and operations work, with a focus on incident investigation, breach impact analysis, and structured risk assessment for medium-to-large organizations.

The program emphasizes analytical thinking, business-impact reasoning, and clear security communication—core competencies for entry-level and graduate cybersecurity roles.


Task 1 — Security Breach Impact Analysis (Ransomware Incident)

Scenario:
A mid-sized healthcare technology provider (Orion Health Services) experienced a ransomware attack following a phishing campaign targeting internal staff.

Key incident details:

  • Attack type: Phishing-led ransomware
  • Initial access: Malicious Excel attachment sent to finance staff
  • Compromised assets:
    • Employee payroll records
    • Patient appointment schedules
    • Internal system credentials
  • Affected systems:
    • File server
    • HR and finance platforms
    • Backup server (partially encrypted)
  • Indicators of Compromise (IOCs):
    • Overseas suspicious login
    • Mimikatz credential harvesting
    • .orionlock encrypted files

Work performed:

  • Analysed attack vector and infection timeline
  • Assessed technical, legal, financial, and reputational impact
  • Identified exploited weaknesses in email security and credential protection
  • Produced an executive-ready breach impact report with prioritized recommendations

Skills applied: incident analysis, ransomware reasoning, business impact assessment, executive reporting.


Task 2 — Cybersecurity Risk Assessment

Scenario:
A retail enterprise (RetailNova Pty Ltd) operating e-commerce, cloud infrastructure, and nationwide POS systems required a comprehensive cybersecurity risk review.

Assessment scope included:

  • Cloud-hosted e-commerce platform (AWS)
  • Payment integrations (PayPal, Afterpay)
  • Salesforce CRM and SAP ERP
  • Cloud-connected POS systems across 85 retail locations
  • BYOD environment with VPN access
  • Third-party vendors and marketing integrations

Work performed:

  • Identified critical information assets and data types (PII, transaction data, behavioral analytics)
  • Mapped threats based on historical incidents (phishing, ransomware, third-party data leakage)
  • Evaluated likelihood and impact of risks using a structured risk framework
  • Prioritized risks and proposed mitigation strategies aligned with security best practices

Skills applied: risk identification, threat modelling, RBAC analysis, third-party risk awareness, security governance.


Key Takeaways

  • Demonstrated how ransomware incidents affect organizations beyond technical damage, including compliance and reputation.
  • Applied structured risk assessment methodologies to complex, multi-system enterprises.
  • Strengthened ability to translate technical security findings into actionable business recommendations.
  • Gained hands-on exposure to cybersecurity operations, GRC principles, and threat-driven analysis.

Tools & Concepts Used

  • Incident response lifecycle
  • Ransomware analysis and IOCs
  • Risk assessment frameworks
  • Asset–threat–impact mapping
  • Security reporting for executives
  • Governance, Risk, and Compliance (GRC)

This project was completed as part of a virtual job simulation on Forage and reflects practical, scenario-based cybersecurity training aligned with industry expectations.