"/> PAe - how to manage the ciberincidentes in the public sector
the accesskey _ mod _ content

How to manage the ciberincidentes in the public sector

27 May 2020

Update the guide CCN-STIC 817 ENS. Management of Ciberincidentes, through which provides a rapprochement with the description of the ciberincidentes, some recommendations to identify dangerousness and methodology CCN-CERT notification.

 

Article 36 Royal Decree 3/2010, of January 8th , which regulates the national security Scheme that “ National PKIX Centre (CCN) will articulate the response to security incidents around the structure called CCNCERT, acting without prejudice to response capabilities to security incidents that can have each public administration and the coordinating role at national and international levels of CCN ”.

Similarly, in the Right Decreto-ley 12/2018, 7 September , de Seguridad de las Redes y Sistemas de Información (cuyo desarrollo está pendiente de aprobación) determina que el CCN-CERT tiene que actuar en el caso de Servicios Esenciales y en aquellos casos de especial gravedad que necesiten de una coordinación nacional.

Por todo ello, y para conseguir homogeneizar los criterios a la hora de notificar los incidentes y determinar su peligrosidad, el CCN-CERT ha actualizado su Guide CCN-STIC 817 national security Scheme. Management of ciberincidentes (Opens in new window) available in the public part of its portal. The purpose of this document is to help the public Sector to the establishment of response capabilities to ciberincidentes and their proper treatment, effective and efficient, dirigiéndose especially Response teams Ciberincidentes and Responsible for Information security (of forced nomination for operators of essential services).

Updates are now have been taking into account the development of the royal Decreto-ley 12/2018 and National Guide of notification and management of Ciberincidentes adopted by the national council of cybersecurity.

Ciberincidentes classification

The guide CCN-STIC 817 collects 36 types of different ciberincidentes and sets certain criteria to determine how dangerous the same (instrumental in setting priorities and allocation of resources). In this sense, the fixed CCN-CERT five levels of danger.

Also in this document provides a methodology of notification to the CCN-CERT, based on the time and the typology of ciberincidente.

It is noteworthy that the content of this guide is aligned with the tool LUCIA (Opens in new window) , desarrollada por el CCN-CERT, para la Gestión de Ciberincidentes en las entidades del ámbito de aplicación del Esquema Nacional de Seguridad.

Original source of the news (Opens in new window)

  • Security
General access point
 
General access point