Readiness assessment for establishing a national CIRT (Afghanistan, Bangladesh, Bhutan, Maldives and Nepal)
FOREWORD
TABLE OF CONTENTS
CHAPTER 1 INTRODUCTION
1.1 Background
1.2 Objectives
1.3 What is a national CIRT?
1.4 The need for a national CIRT
1.5 Benefits of having a national CIRT
1.6 Assessment methodology
1.7 Assessment justification
CHAPTER 2 READINESS ASSESSMENT
2.1 Readiness assessment: Afghanistan
2.2 Readiness assessment: Bangladesh
2.3 Readiness assessment: Bhutan
2.4 Readiness assessment: Maldives
2.5 Readiness assessment: Nepal
CHAPTER 3 ACTION PLAN TO ESTABLISH A CIRT
3.1 Phase 1: Basic CIRT infrastructure and services
3.2 Phase 2: Enhanced CIRT services
3.3 Phase 3: Advanced CIRT services
3.4 CIRT services to constituencies
3.5 CIRT reporting structure
3.6 CIRT organizational chart
3.7 Risk analysis
3.8 CIRT institutional and organizational requirements and arrangements
3.9 Financial model
APPENDIX 1 – Incident reporting form
APPENDIX 2 – Advisory Template
APPENDIX 3 – CIRT Advisory Sample
APPENDIX 4 – Terms of Reference for Chief Security Officer (CSO) of national authority
APPENDIX 5 – Membership policy
APPENDIX 6 – Hardware and software specifications
APPENDIX 7 – Premises
APPENDIX 8 – IT infrastructure
APPENDIX 9 – Proposed standard operating procedure (SOP)