The Global Cyber Security Center has developed a tool named CERTrating to evaluate the Maturity Level of CERTs and services provided to the Constituency
Cyber-attacks that have occurred in recent years have fully confirmed that Cybersecurity is an increasingly complex challenge that represents a priority for all companies both in terms of development and investments.
In this complex context, CERTs certainly play a central role in companies security perimeter but even more in National Scenarios. Computer and Emergency Response Teams are one of the main protagonists and one of the first defense line of cybersecurity, identifying, preventing, responding, resolving and struggling any type of IT incident in order to protect corporate and national interests.
For these reasons the Global Cyber Security Center, a not-for-profit foundation of Poste Italiane, according to its mission of developing and disseminating knowledge and awareness on Cyber Security, has developed a Tool, CERTrating, to evaluate the Maturity Level of CERTs and services provided to the Constituency to better face today’s complex “cyber–scenarios”.
The idea to develop a Tool that can help CERTs/CSIRTs was thought to deal with a need to understand how mature companies are in delivering CERT’s services.
CERTrating is based on a capability maturity model designed by ENISA for CERTs that represents one of the methods to understand how and where investments must be directed and how much effort should be made in terms of time and resources to become more resilient.
The Capability Maturity Model (CMM) was conceived and initially introduced by Watts Humphrey “father of software quality”, in the days when he worked at IBM for the American Ministry of Defense. The model is mainly used to evaluate maturity process in companies, from the technology used to organi ..
Support the originator by clicking the read the rest link below.
