KM3 - Cyber diplomacy and international cooperation
KM4 - Cyber Incident Management
2 of 5

5. Which services do the CSIRTs offer?

The integral and minimum services a CSIRT should offer to its constituents are cyber-related incident management, outreach to and communication with its constituency, and cyber security risk awareness creation. However, entities in the CSIRT community can develop their own service lists reference to the FIRST CSIRT Services Framework and International Telecommunications Union Standardization Sector (ITU-T) Recommendation X.1060.

Good practice: Decide on the set and scope of national CSIRT services

The GFCE Global Good Practice – National Computer Security Incident Response Teams (CSIRTs) identify the determination of the services and service areas from the onset as a good practice.  

Both the GFCE and the ITU recommend the use of the CSIRT Services Framework, which includes incident management, analysis, information assurance, situational awareness, outreach/communications, capability development, and Research & Development.

New post

Your email address will not be published. Required fields are marked *

1 post
Collapse posts
Skip to content