Best Practices for Establishment of a National Information Security Incident Management Capability (ISIMC)

Authors

DOI:

https://doi.org/10.23962/10539/28656

Keywords:

cybersecurity, information security, cyber threats, CSIRT, national ISIMC, confidentiality, integrity, availability, standards, intrusion, protection, detection, incident management, incident handling, incident response

Abstract

The South African Government's National Cybersecurity Policy Framework (NCPF) of 2012 provides for the establishment of a national computer security incident response team (CSIRT) in the form of the National Cybersecurity Hub-more correctly referred to as an information security incident management capability (ISIMC). Among other things, the National Cybersecurity Hub is mandated to serve as a high-level national ISIMC that works in collaboration with sector ISIMCs to improve South Africa's critical infrastructure security. In this article, we identify standards, policies, procedures and best practices regarding the establishment of ISIMCs, and we provide recommendations for South Africa's deployment of an ISIMC collaboration network.

Downloads

Published

06-12-2019

Issue

Section

Research Articles

How to Cite

“Best Practices for Establishment of a National Information Security Incident Management Capability (ISIMC)” (2019) The African Journal of Information and Communication (AJIC) [Preprint], (24). doi:10.23962/10539/28656.
Views
  • Abstract 290
  • pdf 191