Best Practices for Establishment of a National Information Security Incident Management Capability (ISIMC)

Authors

DOI:

https://doi.org/10.23962/10539/28656

Keywords:

cybersecurity, information security, cyber threats, CSIRT, national ISIMC, confidentiality, integrity, availability, standards, intrusion, protection, detection, incident management, incident handling, incident response

Abstract

The South African Government's National Cybersecurity Policy Framework (NCPF) of 2012 provides for the establishment of a national computer security incident response team (CSIRT) in the form of the National Cybersecurity Hub-more correctly referred to as an information security incident management capability (ISIMC). Among other things, the National Cybersecurity Hub is mandated to serve as a high-level national ISIMC that works in collaboration with sector ISIMCs to improve South Africa's critical infrastructure security. In this article, we identify standards, policies, procedures and best practices regarding the establishment of ISIMCs, and we provide recommendations for South Africa's deployment of an ISIMC collaboration network.

Metrics

Metrics Loading ...

Downloads

Published

06-12-2019

How to Cite

Pretorius, M. and Ngejane, H. (2019) “Best Practices for Establishment of a National Information Security Incident Management Capability (ISIMC)”, The African Journal of Information and Communication (AJIC). South Africa, (24). doi: 10.23962/10539/28656.

Issue

Section

Research Articles