icon-carat-right menu search cmu-wordmark

SEI Launches Course on Developing a National or Government Computer Security Incident Response Team

SEI Launches Course on Developing a National or Government Computer Security Incident Response Team
Article

July 24, 2024—The Software Engineering Institute has created a new course on the decisions and considerations behind the development of a computer security incident response team (CSIRT) for national or government organizations. The SEI will teach the first instance of the course on October 8-9, live online.

The course is intended for those responsible for developing a national or government CSIRT. Others may also benefit: managers and project leaders of other types of CSIRTs, C-level managers, and those in organizations that interact with national or government CSIRTs.

Lectures and group exercises will teach course participants how to, among other objectives, identify CSIRT enablers and resources, characterize stakeholders, create implementation strategies and plans, describe evaluation methods, and implement process improvements.

Cyber attacks pose significant risks throughout the world. Building international capacity to mitigate threats from cyber incidents helps protect other nations and, by limiting the damage and scope of attacks in other regions, improves the cybersecurity posture of the United States.

For nearly two decades, the SEI has supported a global community of CSIRTs for whole nations or economies and their critical infrastructure sectors. SEI experts have helped governments establish 22 such CSIRTs around the globe. The SEI also sponsors the Annual Technical Meeting for CSIRTs with National Responsibility (NatCSIRT). These experiences have informed the SEI’s frameworks, methodologies, and other guidance for creating, implementing, and developing CSIRTs and security operations centers.

The new two-day course Developing a National or Government CSIRT is the SEI’s next step in transitioning its expertise to the public.

“The SEI has over 20 years of experience, engagement, and collaboration with national and government CSIRTs,” said James Lord, technical manager of security operations in the SEI’s CERT Division. “We understand the challenges associated with sharing information and implementing tools, techniques, and strategies that address problems unique to CSIRTs that are responsible for a nation or economy.”

Download the course’s fact sheet, or visit the course page on the SEI’s website to learn more about the course and to register. Discover more of the SEI’s work in cybersecurity center development in the SEI Digital Library and the SEI Blog.