ENISA : Comment évaluer la maturité de votre gestion des incidents #CSIRT

L’agence europénne de cyber-sécurité ENISA vient de publier une méthode pour apprécier la maturité de sa gestion des incidents et son Computer Security Incident Response Team (CSIRT) en particulier.

CSIRTs will find in ENISA’s new report a comprehensive overview about assessment parameters which was also translated into an online survey tool for a direct maturity self-assessment. The CSIRT maturity improvement process includes a survey with questions and answers for all the parameters of the commonly used SIM3 (Security Incident Management Maturity Model) model, which makes it considerably easier for any CSIRT team to self-assess their maturity in the terms of SIM3.

Pour en savoir plus, voici le détail des critères d’appréciation CSIRT dans ce document:

A noter que cette démarche propose également un questionnaire d’auto-évaluation en ligne.

Le communiqué est disponible ici:

News Item ENISA has published a new practical guide for CSIRTs so that they are better prepared to protect their constituencies and improve team’s maturity.

Originally published at www.ledecodeur.ch on June 23, 2017.

One clap, two clap, three clap, forty?

By clapping more or less, you can signal to us which stories really stand out.