Introduction to setting up a CSIRT
The world around us is changing rapidly, almost on a daily basis. We are in a joyful world full of new possibilities for ICT solutions. Communicating with other people has changed, knowledge is part of the global nature of the world and is at our fingertips at home via the Internet.
New business opportunities are developed and created. However, the odds are against safety: today, one in every thousand lines of new computer code contains an error. In turn, every error might cause a security flaw. Security attacks are getting technically more complicated and easier to execute at the same time. The time to take counter measures is getting short! Furthermore, this situation is unlikely to change very soon.
From a business perspective and a governmental perspective, it creates great opportunities and possibilities. It also brings new weaknesses into society, which are new to us and still have to be identified and addressed. Overall awareness of security should be stimulated. Therefore, we need a new security focused approach in the modern business model of today.
The CSIRT/CERT model can help you to get your organisation moving in matters of security handling and prevention, setting up the necessary policies for security and safe working methods and creating a security-aware culture within your company or Government.
Some quotes to bear in mind when starting the implementation phase:
- 'Security is not a product but it is a process' - by Bruce Schneier
- 'Plan your dive and dive your plan' - PADI diving rule
- 'A CSIRT team is like a fire-brigade! It's just sad we don't have those shiny fire engines' - HB