Best Practices for Establishment of a National Information Security Incident Management Capability (ISIMC)

Date
2019-12-06
Authors
Pretorius, Morné
Ngejane, Hombakazi
Journal Title
Journal ISSN
Volume Title
Publisher
Abstract
The South African Government’s National Cybersecurity Policy Framework (NCPF) of 2012 provides for the establishment of a national computer security incident response team (CSIRT) in the form of the National Cybersecurity Hub—more correctly referred to as an information security incident management capability (ISIMC). Among other things, the National Cybersecurity Hub is mandated to serve as a high-level national ISIMC that works in collaboration with sector ISIMCs to improve South Africa’s critical infrastructure security. In this article, we identify standards, policies, procedures and best practices regarding the establishment of ISIMCs, and we provide recommendations for South Africa’s deployment of an ISIMC collaboration network.
Description
Keywords
Citation
Pretorius, M., & Ngejane, H. (2019). Best practices for establishment of a national information security incident management capability (ISIMC). The African Journal of Information and Communication (AJIC), 24, 1-20. https://doi.org/10.23962/10539/28656