GFCE Global Good Practices – National Computer Security Incident Response Teams (CSIRTs)

Publish Date: 21 November 2017

Even the best cyber security posture and practices cannot guarantee that key organisations and information infrastructures within a nation will not be vulnerable to malware, software failures,
human errors, and other mishaps. The cyber threat landscape changes rapidly. Cyber incidents occur on a daily basis and may be of cross-border, multinational and often even global nature. Nowadays, threat actors target specific individuals, organisations, industries, and nations, or may indiscriminately target any system. Therefore, it is crucial for nations to take their responsibility and build an effective national CSIRT capacity.