GFCE Cybersecurity Knowledge Modules

KM3 - Cyber diplomacy and international cooperation
Module objectives
1. Risks for international peace and cyber-stability
3 Topics
1.1 Cyber-attacks and geopolitics
1.2 Cyber as part of hybrid warfare
1.3 Cyber-armament
2. Towards an international agreement
4 Topics
2.1. Framework for responsible state behaviour in cyberspace
2.2. Applicability of international law
2.3. Norms, confidence building measures, and capacity building
2.4 Broader context
3. International cooperation
4 Topics
3.1. The United Nations
3.2. Other multilateral forums
3.3. Regional efforts
3.4. Multistakeholder efforts
4. Cyber diplomacy
5. Main takeaways
6. Assignment
1 Quiz
KM3 Quiz
KM4 - Cyber Incident Management
Module objectives
1. Introduction
2. Types of Cyber Incident Response Teams
5 Topics
2.1. National Computer Security Incident Response Team
2.2. Product Security Incident Response Team
2.3. Sector CSIRTs
2.4. Security Operation Centre
2.5. Commercial CSIRT
3. What needs to be considered when establishing a National CSIRT?
2 Topics
3.1. CIRT framework
3.2. How to set up CSIRT and SOC
4. How to assess cyber incident readiness
3 Topics
4.1. Security Incident Management Maturity Model (SIM3)
4.2. Security Operation Centre Capability and Maturity Model (SOC-CMM)
4.3. CSIRT Maturity – Self-assessment Tool
5. Which services do the CSIRTs offer?
2 Topics
5.1. FIRST CSIRT services framework
5.2. ITU-T Recommendation X.1060 service categories
6. Who does the CSIRT serve?
7. Which Tools does a CSIRT need?
8. Policies, frameworks, and guidelines
9. Resourcing and funding a CSIRT
1 Topic
9.1. What does a CSIRT Budget look like?
10. CSIRT capabilities
3 Topics
10.1. Training and certification
10.2. Auditing
10.3. Cyber drills
13. Main takeaways
14. Assignment
1 Quiz
KM4 Quiz
2 of 5
Previous Lesson
Next Lesson

1. Introduction

GFCE Cybersecurity Knowledge Modules 1. Introduction

Africa has over 500 million internet users, which accounts for 38% of the continent’s population. An increase in the uptake and dependency of information and communication technologies in economic sectors, public institutions and society is expected, which will require countries to build effective national cybersecurity capacity to protect and defend their citizens, information, and infrastructure.  

With persistent virtual realities accelerated by the COVID-19 pandemic, it is imperative that African countries build capacity and effectiveness in cybersecurity incident management.  

Cybercriminals are developing and boosting their attacks at an alarming pace, exploiting the fear and uncertainty caused by the unstable social and economic situation created by COVID-19.

Jürgen Stock, INTERPOL Secretary General,
Source: African Cyberthreat Assessment Report, October 2021

Cybersecurity has been identified as one of the main Agenda 2063 flagship projects in energy and infrastructure development. The cybersecurity project is guided by the African Union Convention on Cyber Security and Personal Data Protection. The Convention’s Chapter 3 provides for the promotion of cybersecurity through measures taken at the national level.  These measures include a national cybersecurity policy and strategy, legislative and regulatory measures, as well as national cybersecurity monitoring structures through the establishment of appropriate institutions such as the Computer Emergency Response Team (CERT) or the Computer Security Incident Response Teams (CSIRTs).

Previous Lesson
Back to Course
Next Lesson

New post

Your email address will not be published. Required fields are marked *

Post a comment
Skip to content