CASE EXERCISE OVERVIEW                                                                                 

Title: Cyber Attack
Author: Syed Haque PhD and Mohammad Faysel MA
Author Contact Info : UMDNJ-SHRP, SSB Rm 351, Newark NJ 07101-1709; (973) 972-6871; haque@umdnj.edu
Date: February 2008
Target Audience: Hospital Personnel
Time Required: 2 hours
Format: Tabletop
Copyrighted Original Case: NO
Link To Copyright Statement:
Publisher/Source: NJ-PTC
Attribution:

CATEGORY

NATIONAL PLANNING SCENARIO
  • Cyber attack

CORE COMPETENCIES

LEARNING OBJECTIVES
  • Differentiate between day-to-day operations/chains of command and emergency operations/chains of command.
  • Suspect or consider the possibility of a WMD attack (e.g. "situational awareness," "being a medical detective").
  • Describe the four stages of emergency management: Preparedness, Response, Recovery and Mitigation.
  • Select appropriate engineering/administrative control strategies during an emergency.
  • Activate appropriate mitigation activities to lessen the impact of a potential/actual emergency.
  • Demonstrate proficiency in activities that can lessen the impact of a CBRNE emergency (i.e. vaccination, prophylaxis and public education/outreach).
  • List examples of administrative (i.e. building evacuation) and engineering (i.e. shutting of a ventilation system) protective actions for CBNRE agents).

NIMS/ICS/NRP ELEMENTS
  • NIMS: Accountability
  • NIMS: Flexibility/Adaptability
  • NIMS: Interoperability/Compatibility
  • NIMS: Scalability
  • NIMS: Standardization
  • NIMS: Unification
  • ICS: Command & Management
  • ICS: Common Terminology
  • ICS: Facility Management
  • ICS: Incident Action Planning
  • ICS: Manageable Span of Control
  • ICS: Modular Organization
  • ICS: Multi-Agency Coordination
  • NRP: Incident Management at Lowest Possible Level
  • NRP: Preparation
  • NRP: Prevention
  • NRP: Recovery & Mitigation
  • NRP: Response

TARGET CAPABILITIES
  • Critical Infrastructure Protection
  • Information Gathering and Recognition of Indicators and Warnings
  • Intelligence/Information Sharing and Dissemination
  • Law Enforcement Investigation and Operations
  • Onsite Incident Management
  • Planning
  • Risk Management