The IT Law Wiki


Software Engineering Institute, Best Practices for National Cyber Security: Building a National Computer Security Incident Management Capability, Version 2.0 (Apr. 2011) (full-text).


The handbook provides principles and strategic goals to help nations develop their own, robust national computer security incident management capacity. It attempts to alleviate the challenge of developing an incident management capability with limited published guidance. Many nations attempting to develop National CSIRTs have started by attempting to copy existing CSIRT organizations. This approach can be problematic because not every nation has the same needs and resources. The operating principles and strategic goals discussed in this document enhance the ability of governments to manage cybersecurity risks and focus their efforts.