GFCE Cybersecurity Knowledge Modules

KM3 - Cyber diplomacy and international cooperation
Module objectives
1. Risks for international peace and cyber-stability
3 Topics
1.1 Cyber-attacks and geopolitics
1.2 Cyber as part of hybrid warfare
1.3 Cyber-armament
2. Towards an international agreement
4 Topics
2.1. Framework for responsible state behaviour in cyberspace
2.2. Applicability of international law
2.3. Norms, confidence building measures, and capacity building
2.4 Broader context
3. International cooperation
4 Topics
3.1. The United Nations
3.2. Other multilateral forums
3.3. Regional efforts
3.4. Multistakeholder efforts
4. Cyber diplomacy
5. Main takeaways
6. Assignment
1 Quiz
KM3 Quiz
KM4 - Cyber Incident Management
Module objectives
1. Introduction
2. Types of Cyber Incident Response Teams
5 Topics
2.1. National Computer Security Incident Response Team
2.2. Product Security Incident Response Team
2.3. Sector CSIRTs
2.4. Security Operation Centre
2.5. Commercial CSIRT
3. What needs to be considered when establishing a National CSIRT?
2 Topics
3.1. CIRT framework
3.2. How to set up CSIRT and SOC
4. How to assess cyber incident readiness
3 Topics
4.1. Security Incident Management Maturity Model (SIM3)
4.2. Security Operation Centre Capability and Maturity Model (SOC-CMM)
4.3. CSIRT Maturity – Self-assessment Tool
5. Which services do the CSIRTs offer?
2 Topics
5.1. FIRST CSIRT services framework
5.2. ITU-T Recommendation X.1060 service categories
6. Who does the CSIRT serve?
7. Which Tools does a CSIRT need?
8. Policies, frameworks, and guidelines
9. Resourcing and funding a CSIRT
1 Topic
9.1. What does a CSIRT Budget look like?
10. CSIRT capabilities
3 Topics
10.1. Training and certification
10.2. Auditing
10.3. Cyber drills
13. Main takeaways
14. Assignment
1 Quiz
KM4 Quiz
2 of 5
Previous Topic
Next Topic

2.2. Product Security Incident Response Team

GFCE Cybersecurity Knowledge Modules 2. Types of Cyber Incident Response Teams 2.2. Product Security Incident Response Team

As more African countries engage in the manufacture and innovation, consideration should be given to security in the design, planning, development, testing and maintenance of products, solutions and services 

According to FIRST, a Product Security Incident Response Team (PSIRT) is “an entity within an organization which, at its core, focuses on the identification, assessment, and disposition of the risks associated with security vulnerabilities within the products, including offerings, solutions, components, and/or services which an organization produces and/or sells.”  The FIRST PSIRT Services Framework, provides guidance on the profile and capabilities of a team, created to manage vulnerabilities identified in products and offerings.  

Examples of a PSIRT include Siemens ProductCERT, which is part of Siemens cyber incident handling and vulnerability handling (IHVH) portfolio and Kaspersky’s Product Security Team (PST). The Microsoft Security Development Lifecycle (SDL) consists of a set of practises that support security assurance and compliance, including the establishment of a standard incident response process.

Resource: Presentation – Product CSIRTSs (PSIRTs) Special Interest Group (SIG)

The presentation made at the FIRST & AfricaCERT Virtual Symposium for Africa and Arab Regions December 7-9, 2021 By PSIRT SIG Co-Chairs Pete Allor, Red Hat and Josh Dembling, Intel covers the following areas:

– PSIRT training videos and maturity guide 2018

– PSIRT Services Framework V.1.1.2019 

– PSIRT Services Framework V.1.X. (Q2 2022) 

– Determining mission, Goals and Deliverables 

Previous Topic
Back to Lesson
Next Topic

New post

Your email address will not be published. Required fields are marked *

Post a comment
Skip to content