Your IP: Unknown · Your Status: ProtectedUnprotectedUnknown
home
CSIRT

CSIRT

(also computer security incident response team, cybersecurity incident response team, computer emergency response team, computer emergency readiness team)

CSIRT definition

A team of IT professionals responsible for detecting, controlling, and eliminating cyber incidents within an organization. Organizations can form their own CSIRT using internal resources or hire expert teams from the outside to handle problems. In addition to responding to incidents, CSIRTs develop the organization’s security policies, train staff in best practices, and analyze past incidents to deter future attacks.

The first computer security incident response team was assembled under a US government contract at Carnegie Mellon University. It was created in response to the 1988 Morris Worm incident that paralyzed a large portion of the early internet.

Real CSIRT examples

  • CERT-EU is the computer emergency response team hosted by the European Commission to assist EU institutions, bodies, and agencies.
  • CyOps (Cynet) is an external response team that can be hired by organizations to help them deal with cybersecurity incidents 24/7.

Further reading

What is a data breach, and how do they happen?
What is endpoint detection and response (EDR)?

Ultimate digital security

We value your privacy

This website uses cookies to provide you with a safer and more personalized experience. By accepting, you agree to the use of cookies for ads and analytics, in line with our Cookie Policy.