[Bp_certs] About types of CERTs

Rohana Palliyaguru rohana at cert.gov.lk
Mon Jul 21 01:50:39 EDT 2014 

Dear all,

During the past 8 years we have observed the security incidents reported
to us. It is found that  if a particular sector such as banking and
finance, education, health, military..etc is taken the incidents are
very common.

In some sectors they are very reluctant to report incidents to any other
party because they do not need to damage their reputation at any cost.
Specially in the banking sector there are frauds of milliions of bugs
but they keep quiet and bare the loss. But as a national perspective it
is a loss to the country´s economy. At the same time if they can share
their incidents/information with a trusted body who will dissiminate the
information to the other relevant parties without disclosing the
original source, others can also prepare and escape from such incidents.

In Sri Lanka we have developed a sector based CSIRT concept and alreay
establised a BankCSIRT (www.bankcsirt.lk) for the banking and finalcial
sector which may deal with reported incidnets independently. They do not
need to report any incident/information to Sri Lanka CERT, unless they
are expecting any support from us.

As the national CERT we have already established many contacts with
other international bodies and hence we support the bankCSIRT (or any
sector based CSIRT) thorugh coordinating incidents if they request. Also
we support them to develop and improve their IS standards compliance.

>From the past experiance we have identified that any country who is
seeking for support to resolve any information security matter related
to a particular economy, normally contact the relevant POC of that
country. The POC may its national CERT|CC, who will play the
coordination role to support such requests. For example if it is related
to any bank in our economy, we can easily coordinate with the BankCSIRT.
Hence the internatinoal entities who need to get help for cyber security
matters related to our economy do not need to keep a huge list of
contacts (eg: ISPs, Banks etc).

Best regards,

-- 
Rohana Palliyaguru
Manager Operations & Principal Information Security Engineer
Sri Lanka CERT|CC
Room 4-112, BMICH, Bauddhaloka Mawatha, Colombo 07, Sri Lanka.
Tel : +94 112 691 692      Fax: +94 112 691 064
e-mail: rohana at cert.gov.lk   Website: www.cert.gov.lk

More information about the Bp_certs mailing list