CSIRT (Computer Security Incident Response Team)

GPTKB entity

Statements (52)
Predicate Object
gptkbp:instanceOf gptkb:organization
gptkbp:abbreviation Computer Security Incident Response Team
gptkbp:activity incident analysis
incident containment
incident detection
incident eradication
incident recovery
post-incident review
gptkbp:alternativeName Computer Incident Response Team (CIRT)
Incident Response Team (IRT)
Security Incident Response Team (SIRT)
gptkbp:collaboratesWith gptkb:law_enforcement
CERTs
ISACs (Information Sharing and Analysis Centers)
other CSIRTs
gptkbp:component organizational security program
gptkbp:establishedBy academic institutions
organizations
governments
private companies
gptkbp:field cybersecurity
gptkbp:focus network security
information security
incident management
gptkbp:goal minimize impact of security incidents
improve organizational security posture
https://www.w3.org/2000/01/rdf-schema#label CSIRT (Computer Security Incident Response Team)
gptkbp:mayInclude internal team
external service provider
gptkbp:provides forensic analysis
security awareness training
threat intelligence
incident reporting
vulnerability management
lessons learned
incident coordination
incident escalation
security advisories
incident communication
incident tracking
incident documentation
incident response services
incident analysis reports
gptkbp:purpose coordinate incident response
respond to computer security incidents
mitigate security threats
gptkbp:relatedStandard gptkb:NIST_SP_800-61
gptkb:RFC_2350
gptkbp:relatedTo gptkb:SOC_(Security_Operations_Center)
CERT (Computer Emergency Response Team)
gptkbp:bfsParent gptkb:CERT
gptkbp:bfsLayer 7