ENISA new good practice guide for CERTs - Issuing alerts, warnings and announcements
ENISA has launched today (25th November) a new good practice guide that complements the existing set of ENISA guides for supporting Computer Emergency Response Teams (CERTs, also known as CSIRTs). The new guide describes good practices and provides practical information and guidelines for the process of preparing and issuing alerts, warnings and announcements to a CERT’s constituency.
Published on November 26, 2013
The main focus area of the ENISA's guide on alerts, warnings and announcements is the process of informing the CERTs and their constituencies about threats and ways to contain them – a core service carried out by most CERTs – which involves having an identified and reliable set of information sources and a well-structured process of assessing and processing the incoming information, enabling the CERT to get the right information at the right places in the most timely fashion.
Goal
This good practice guide aims to:
- inform about the current best practices in preparing and issuing alerts, warnings and announcements for the CERT’s constituency,
- suggest ways in which alerting processes can be improved, not only inside an organisation but also in cooperation with others, especially the CERT community and IT security vendors
For the full report: Alerts-Warnings-Announcements
Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!
News items:
http://www.enisa.europa.eu/media/news-items/news-wires/RSS
PRs:
http://www.enisa.europa.eu/media/press-releases/press-releases/RSS