Ans 1

a. Digital maturity refers to the level of organisation’s ability to effectively leverage

digital technologies, processes, and strategies to drive business transformation and
achieve strategic objectives. It goes beyond simply adopting digital tools and
encompasses the integration and optimization of digital capabilities across all aspects
of the organization. Digital maturity is characterised by a holistic approach that
includes a culture of innovation, agile practices, strategic alignment, customer-
centricity, data-driven decision making, and continuous learning and improvement.

b. The SAFe Business Agility model defines seven competencies that help a company
demonstrate digital maturity:

Team and Technical agility: Enables companies to quickly adapt to changing market
conditions and customer needs by empowering cross-functional teams and embracing
agile methodologies for efficient digital product delivery.

Agile Product Delivery: Facilitates the iterative and incremental development of

digital products, ensuring they provide value to customers, align with business
objectives, and respond effectively to market feedback.

Enterprise Solution Delivery: Demonstrates digital maturity by effectively

designing, developing, and integrating complex digital solutions that address
enterprise-wide needs, optimize processes, and achieve strategic goals.

Lean Portfolio Management: Aligns digital initiatives with strategic goals,

optimizes resource allocation, and measures the value and impact of digital
investments to demonstrate a mature approach to digital transformation.

Lean Agile Leadership: Fosters a culture of innovation, collaboration and continuous

improvement through visionary leadership, empowering teams, and guiding the
adoption of lean and agile practices for effective digital transformation.

Organisation Agility: This skill applies lean-agile concepts to build a flexible,

adaptive, and resilient company that can react swiftly to shifting market dynamics and
customer requirements. Agility and responsiveness may be increased through
dismantling silos, encouraging cooperation, and enhancing communication and
openness throughout the business.

Continuous Learning Culture: Cultivates a learning mindset, fosters ongoing skill

development, and encourages knowledge sharing, enabling employees to acquire
digital skills, adapt to the evolving digital landscape, and drive innovation for
increased digital maturity.
Ans 2
a. Attackers use social engineering methods like Phishing, Smishing, and Vishing to get
sensitive information from their victims. Phishing scams are frequently transmitted by
email, SMS, and phone calls, whereas Smishing scams are sent via text messages.
Using the deception principle to force the victim into giving sensitive information,
such as login credentials, financials information, or personal information, is a
prevalent theme throughout these assaults. However, they differ in how they convey
their message and connect their victims.
Phishing assaults are the most common of the three. They frequently include the
attacker impersonating a trustworthy source in order to lure the victim into clicking a
risky link or downloading a risky file. Smishing attacks, which utilise messaging
programmes like SMS rather than email, employ similar tactics. Vishing attacks
involve the perpetrator claiming to be an official company or service representative
during phone interactions.
b. Indicators of foul play and measures to protect
1. Phishing:
Indicators: Phishing emails may contain suspicious links or attachments,
demands for personal information, or exhortations to take immediate action.
Another option is a fake email address or one that looks a lot like the real sender.
Measures: Staff employees and customers should double-check the email’s
legitimacy and the sender’s address before clicking any links or downloading any
files. Additionally, they should only reveal personal information if they are aware
of the identity and intent of the requester.

2. Smishing:
Indicators: Threatening language, dodgy links, or request for personal
information can all be found in smishing communication. Additionally, the
sender’s phone can be made up or spoof an actual sender.
Measures: Be wary of text messages from unfamiliar senders, stay away from
dubious links, and refrain from sending personal information by text. Use trusted
security software and make regular device updates.

3. Vishing:
Indicators: Vishing calls can contain demands for personal information, desperate
offers for cooperation, or threats of serious consequences if the victim refuses.
The caller may identify themselves as from a reputable company or service.
Measures: Avoid giving up personal or financial information over the phone
unless you initiate the contact and confirm the callers’ validity.