Certified Disaster Response and Recovery Manager (C-DRRM)

Instructor-Led Online Training

Cybersecurity Courses: Certified Disaster Response and Recovery Manager

Business Continuity and Disaster Response and Recovery is the process of preparing processes, policies, and procedures that follow in the event of a significant and unplanned operational disruption. The Certified Disaster Response and Recovery Manager training course prepares students for industry certification in Business Continuity planning and Disaster Recovery missions.

As businesses face a wide range of daily risks – including cyber-attacks, human error, technical failures, and natural disasters – it is vital they create practical plans to sustain their security posture, financial health, and industry and brand reputation to maintain long-term success. Students will cover topics such as: BCP Design and Development Strategies, Risk Management Frameworks, Qualitative and Quantitative Analysis, Creating Asset Inventories, Recovery Site Management, Reviewing Cloud Service Agreements, Cloud Data Security Strategies, and the Impact of Legal Requirements on Cloud Storage Solutions.

NICE Cybersecurity Workforce Framework

The Certified Disaster Response and Recovery Manager course is a component of the career progression track that supports the required Categories, Specialty Areas and Work Roles as defined by the National Initiative for Cybersecurity Education (NICE) Cybersecurity Workforce Framework.  It provides a common language to speak about cyber roles and jobs and can be referenced to define professional requirements in cybersecurity.







Course Outline and Learning Objectives

Click the blue arrow to the left of the domain title to view an expanded list of domain learning objectives.

  • The BCP and DRP Convergence
  • Key BCP and DRP Definitions
  • BCP Key Components
  • DRP Key Components
  • Desired State of Security Challenges
  • Evolution of Sustainable Policies
  • Roles of a Business Impact Analysis
  • Benefits of a Business Impact Analysis
  • Managing a BIA Project
  • Selecting a BIA Project Manager
  • BIA Data Collections
  • Presenting Results to Management
  • The Key Attributes of Risk
  • Risk Management Program Development
  • Asset Inventories and Resource Profiles
  • Risk Management Frameworks
  • Vulnerability Assessment ≠ Risk Assessment
  • Third-Party Service Providers
  • Qualitative and Quantitative Analysis
  • Defining Severity
  • Estimating Severity and Likelihood
  • Asset Value Considerations
  • Calculating SLE, ARO, and ALE
  • Sources of Respected Statistics
  • Developing Testing Goals
  • Benefits of BCP Testing
  • BCP Test Progressions
  • Potential Testing Scenarios
  • Training and Awareness
  • Benefits of Certifying the BCP
  • The EOC in Limited Emergencies
  • EOC Scope and Purpose
  • EOC Material Requirements
  • EOC Command Functions
  • EOC Control Functions
  • Mobile EOC Characteristics
  • Assembly Point Considerations
  • The Recovery Site Manager
  • Recovery Gantt Chart Function
  • Work Area Considerations
  • Digital Communication Considerations
  • SMS Notification Methodology
  • Seasonal Flu vs. Pandemic Flu
  • Flu Epidemics: Facts and Statistics
  • Impacts of Flu on Business
  • The Epidemic / Pandemic BCP Team
  • Epidemic / Pandemic Risk Assessment
  • Post-Epidemic / Pandemic Considerations
  • Definition of Cloud Computing
  • Cloud Computing Characteristics
  • Defining the Existing Operational State
  • Benefits of Cloud Computing
  • Cloud Computing Service Models
  • Cloud Computing Deployment Models
  • Cloud Data Life Cycle (CDLC)
  • Cloud Architecture: Volume Storage
  • Cloud Architecture: Object-Based Storage
  • The Content Delivery Network (CDN)
  • Security Information and Event Management
  • Data Loss Prevention: Egress Monitoring
  • Cloud Platform Risks
  • Private and Public Cloud Risks and Threats
  • Vendor Lock-Out
  • IaaS / PaaS / SaaS Risks and Threats
  • Virtualization Risks and Threats
  • Cloud-Specific BIA Risks
  • Foundations of Managed Services
  • Responsibilities by Service Type
  • Shared Responsibilities by Service Type
  • Lack of Physical Access
  • Lack of Auditing Ability
  • Shared Responsibility: Monitoring and Testing
  • Criminal and Civil Law
  • Administrative and International Law
  • Doctrine of Proper Law
  • EU Data Protection Directive
  • Personal and Data Privacy Issues
  • Forensic Requirements
  • Diverse Geographical Legal Jurisdictions
  • Organizational Cloud Policies
  • The Cloud in Enterprise Risk Management
  • Risk Management Frameworks
  • Risk Management Metrics
  • Contracts and Service-Level Agreements
  • General Contract Structures
  • Prime Clauses
  • General Clauses
  • Boilerplate Clauses
  • SLA and Contract Review Process
  • General Contract Review Checklist
  • Provisions of an Enforceable Contract
  • Myths and Misunderstandings in Contracts
  • Contract Negotiation Strategies
  • Including a Matching Right
  • Attempting a Contingent Agreement
  • Searching for Post-Settlement Settlements

Course Training Materials

Exam Prep Guide

Course Workbook & Labs

Lab Images (if Applicable)

Practice Assessment Quizzes

40-Hour CPE Credit Certificate

Knowledge Assessment Examination

Knowledge Assessment Exam

Digital Badge CDRRM Exam

Upon completion of online courses, students will be prepared to sit for the knowledge assessment exam. The online examination will consist of True/False, Multiple Choice, and Fill in the Blank questions. The exam may be taken at any time within 6 months of completing the certification course.

Students will have two hours to complete a computer-based examination consisting of 100 questions. A score of 70% or higher is required to earn the certification. Upon successful completion of the exam, students will be sent a hardcopy of their certification and their CPE credit documentation via email (PDF format) within 72-hours of the exam date.

The examination is “closed book.” However, students will be allowed to use their notes on material presented during the course as well as their Course Workbooks.

Additional Information


5 Days


40 Hours


Contact Us to Learn More

To find out more about Cybersecurity Courses and our full range of available client services, contact us today via the phone number or email address listed below.

(912) 335-2217