ElevenPaths Talks


Computer Emergency Response Team (CERT) with Leonardo Huertas.

March 24, 2016. Leonardo Huertas, CSA of ElevenPaths in Colombia, describes the issues and challenges faced by Computer Security Incident Response Teams (CSIRT) and the advantages of creating this type of team with national and sectorial response capacity. ¡Watch the webcast!

This chapter describes the basic steps you must follow when implementing a CSIRT; the topics and tasks that must be addressed when planning and joining this type of team; and the necessary coordination with similar teams in order to efficiently analyze and respond to cyber-security incidents.
The need for a community of computer security incident response teams was acknowledged in the late 1980s – the Defense Advanced Research Projects Agency formed the Computer Emergency Readiness Team (CERT) Coordination Center at the Software Engineering Institute in Carnegie Mellon University. Its aim was to respond to internet security incidents. The CERT/CC was created as a model for the operation of other response teams and to stimulate the formation of additional teams focused on addressing the specific needs of a particular group of users. Governments have acknowledged the need to develop and implement the capacity to respond to cyber-security incidents. In some cases, governments have issued guidelines and other regulatory requirements stipulating that these capacities be created and annual reports on information security be submitted (e.g. Federal Information Security Management Act of 2002).
Here is a list of articles by Leonardo Huertas about this issue:

» Computer Security Incident Response Teams (I) (in Spanish)
» Computer Security Incident Response Teams (II) (in Spanish)