Regresar

Design of an Academic CSIRT – A Proposal Based on Strategic Planning Principles

Abstract:

This work aims to design and implement an organizational model that supports the macro processes of an academic institution in response to computer incidents to raise the level of information security. This study intends to include the research, development, and innovation (R&D&I) in an academic CSIRT. To achieve this, we developed a systematic literature review using the guidance of Barbara Kitchenham through a broad search for information, which allows us to identify the characteristics of the different types of organizations, services, infrastructure, and procedures to design and implement Academic CSIRTs. We then apply the science of design with its specific guidelines for evaluation and iteration within research projects and carry out improvement and knowledge construction. Specifically, we employed the European Network and Information Security Agency (ENISA) guides and the Forum of Incident Response and Security Teams (FIRST) directions, as these organizations are dedicated to preventing and addressing network security and information security problems. We also applied the Strategic Planning Process principles to obtain the Organizational Model Proposal, the operation and services proposal of the Academic CSIRT, and the research areas.