search menu icon-carat-right cmu-wordmark

Resources for Creating a CSIRT

Collection
These resources help you to get started when creating a new CSIRT.
Publisher

Software Engineering Institute

Abstract

To establish a computer security incident response team (CSIRT), you should understand what type of CSIRT is needed, the type of services that should be offered, the size of the CSIRT and where it should be located in the organization, how much it will cost to implement and support the CSIRT team, and the initial steps necessary to create the CSIRT. The resources on this page will help you answer these and other questions.

Collection Items

white-paper-thumbnail-1

Create a CSIRT

• White Paper
By

This white paper discusses the issues and decisions organizations should address when planning, implementing, and building a CSIRT.

Read
generic-asset-thumbnail-1

CSIRT Frequently Asked Questions (FAQ)

• White Paper
By

This FAQ addresses CSIRTS, organizations responsible for receiving, reviewing, and responding to computer security incident reports and activity.

Read
white-paper-thumbnail-1

CSIRT Services

• White Paper
By

In this paper, the authors define computer security incident response team (CSIRT) services.

Read
special-report-thumbnail-1

Skills Needed When Staffing Your CSIRT

• White Paper
By

This white paper describes a set of skills that CSIRT staff members should have to provide basic incident-handling services.

Read