The South African Government’s National Cybersecurity Policy Framework (NCPF) of 2012 provides for the establishment of a national computer security incident response team (CSIRT) in the form of the National Cybersecurity Hub— more correctly referred to as an information security incident management capability (ISIMC). Among other things, the National Cybersecurity Hub is mandated to serve as a high-level national ISIMC that works in collaboration with sector ISIMCs to improve South Africa’s critical infrastructure security. In this article, we identify standards, policies, procedures and best practices regarding the establishment of ISIMCs, and we provide recommendations for South Africa’s deployment of an ISIMC collaboration network.
Reference:
Pretorius, M. & Ngejane, H.C. 2019. Best practices for establishment of a National Information Security Incident Management Capability (ISIMC). The African Journal of Information and Communication, vol. 24, pp.20
Pretorius, M., & Ngejane, H. C. (2019). Best practices for establishment of a National Information Security Incident Management Capability (ISIMC). http://hdl.handle.net/10204/11340
Pretorius, Morne, and Hombakazi C Ngejane "Best practices for establishment of a National Information Security Incident Management Capability (ISIMC)." (2019) http://hdl.handle.net/10204/11340
Pretorius M, Ngejane HC. Best practices for establishment of a National Information Security Incident Management Capability (ISIMC). 2019; http://hdl.handle.net/10204/11340.
Copyright 2019 The Authors. This is an open access article under the terms of the Creative Commons Attribution License, which permits use, distribution and reproduction in any medium, provided the original work is properly cited.