Software Engineering Institute

Organizational Models for Computer Security Incident Response Teams (CSIRTs)

November 30, 2003 • Handbook

By Georgia Killcrece, Klaus-Peter Kossakowski, Robin Ruefle, Mark Zajicek

This 2003 report describes different organizational models for implementing incident handling capabilities, including each model's advantages and disadvantages and the kinds of incident management services that best fit with it.

Read

Incident Management

December 1, 2005 • White Paper

By Georgia Killcrece

In this paper, the author describes incident management capability and what it implies for controlling security events and incidents.

Read

Build Security In

January 18, 2017 • Article

By DHS

This article lists resources that developers, architects, and security practitioners can use to build security into software during its development.

Read

Columbia CSIRT Case Study

January 24, 2013 • White Paper

By Software Engineering Institute

This case study describes the experiences of the Columbia CSIRT in getting its organization up and running.

Read

FAQ: Collaboration Between the CERT Coordination Center and Computer Security Incident Response Teams Worldwide

June 19, 2008 • Brochure

By Software Engineering Institute

This FAQ answers questions related to the collaboration between the CERT/CC and CSIRTs worldwide.

Learn More

Tunisia Case Study

January 24, 2013 • White Paper

By Software Engineering Institute

This case study describes the experiences of the Tunisia CSIRT in getting its organization up and running.

Read

Financial Institution CSIRT Case Study

January 22, 2004 • White Paper

By Software Engineering Institute

This case study describes the experiences of a financial institution CSIRT in getting its organization up and running.

Read

Guidelines for Use of “CERT”

October 7, 2011 • Brochure

By Software Engineering Institute

These guidelines for using “CERT” help to protect and strengthen the use of the word by everyone.

Learn More