CSIRT (Computer Security Incident Response Team)
GPTKB entity
Statements (52)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:organization
|
| gptkbp:abbreviation |
Computer Security Incident Response Team
|
| gptkbp:activity |
incident analysis
incident containment incident detection incident eradication incident recovery post-incident review |
| gptkbp:alternativeName |
Computer Incident Response Team (CIRT)
Incident Response Team (IRT) Security Incident Response Team (SIRT) |
| gptkbp:collaboratesWith |
gptkb:law_enforcement
CERTs ISACs (Information Sharing and Analysis Centers) other CSIRTs |
| gptkbp:component |
organizational security program
|
| gptkbp:establishedBy |
academic institutions
organizations governments private companies |
| gptkbp:field |
cybersecurity
|
| gptkbp:focus |
network security
information security incident management |
| gptkbp:goal |
minimize impact of security incidents
improve organizational security posture |
| https://www.w3.org/2000/01/rdf-schema#label |
CSIRT (Computer Security Incident Response Team)
|
| gptkbp:mayInclude |
internal team
external service provider |
| gptkbp:provides |
forensic analysis
security awareness training threat intelligence incident reporting vulnerability management lessons learned incident coordination incident escalation security advisories incident communication incident tracking incident documentation incident response services incident analysis reports |
| gptkbp:purpose |
coordinate incident response
respond to computer security incidents mitigate security threats |
| gptkbp:relatedStandard |
gptkb:NIST_SP_800-61
gptkb:RFC_2350 |
| gptkbp:relatedTo |
gptkb:SOC_(Security_Operations_Center)
CERT (Computer Emergency Response Team) |
| gptkbp:bfsParent |
gptkb:CERT
|
| gptkbp:bfsLayer |
7
|