User:Milinda wickramasinghe/sandbox

Sri Lanka CERT|CC (Computer Emergency Readiness Team | Coordination Center)was established in 2006 as the national CERT of Sri Lanka under the President's Secretariat and later ..... Ministry of Telecommunications & ICT, in order to respond to the ever-increasing cyber security threats towards the ICT infrastructure of Sri Lanka. Sri Lanka CERT|CC works towards to improve the cyber security posture of the country, coordinate the cyber information sharing and proactively managing the cyber risks to the nation. Sri Lanka CERT is a fully owned subsidiary of the ICT Agency (ICTA) Sri Lanka and is registered as a private limited liability company.

In addition, Sri Lanka CERT|CC is a member of the FIRST and the AP CERT which are organizations of members who are CERTs and CSIRTs of countries around the globe.

Vision
“To be Sri Lanka’s flagship organization and trusted source of advice on threats and vulnerabilities to Information Systems through proactive prevention and effective action

Mission
To be the single and the most trusted point of contact for Information Security in Sri Lanka To protect Information Technology users in the Public and Private Sector Organizations and the General Public by providing up-to-date information on potential threats and vulnerabilities and by undertaking computer emergency response handling services  To Act as the most authoritative national source for all ICT security related issues across the nation Link with other CERTs and CSIRTs around the world to share the knowledge and know-how relating to Information Security

Organizational Structure
    

Services
As the name implies, Sri Lanka CERT is a responsive organization. But going beyond just being a responsive service, Sri Lanka CERT offers services which are intended to raise awareness and enhance ability of its constituents to successfully mitigate on a state of cyber security emergency. Sri Lanka CERT|CC offers its services under the following categories

Responsive Services
Responsive services include attending to events that may have caused adverse effects to constituents. These may be either found out by the constituent to be as suspicious activity or to get notified from intrusion detection systems. Out of many types of incidents reported to SL CERT, the following are the typical incidents that occur more frequently; <BR/> 1.	Malware 2.	Site Defacement 3.	DoS Attack 4.	Phishing 5.	System Compromise 6.	Hate/Threat mail 7.	Identity/Information Theft <BR/><BR/> Sri Lanka CERT|CC will perform a cyber-security risk analysis and advice the constituent of the counter measures. Furthermore, the constituent will be given a comprehensive report including the recommended preventive measures for the future operations.

<BR/><BR/>

Awareness Services
<BR/><BR/> This service serves as an educating platform to the constituents of the current and future trends of the cyber threats/security, fundamentals of cyber security etc. This service is categorized as follows;

Alerts
This service as the name says is to alert the constituents about the latest trends, computer viruses, security vulnerabilities, hoax and any other security related issues and short term recommendations. Currently this service is available via the Sri Lanka CERT|CC official website.

Seminars & Conferences
To raise awareness of the constituents of the most recent cyber security issues, Sri Lanka CERT|CC conducts seminars and even conferences. These seminars and conferences may be tailored upon request and may be chargeable depending on the number of participants, resource person employed, venue etc.

Workshops
These services are similar to seminars and conferences but, more targeted to the ICT professionals who carryout routine tasks related to information security. Theses workshops also may be subjected to charging depending on the number of participants, resource person employed, venue etc.

Knowledge Bases
This is a passive service offered through the Sri Lanka CERT|CC official website. It contains documents, articles & news items published on the Sri Lanka CERT|CC website.

Consultancy Services
These services are aimed at providing the constituents of their adequacy of information security in their systems and if vulnerabilities exist, the necessary steps to strengthen the defenses. These services come under two categories.

Technical Assessments
This service reviews and analyzes the security infrastructure and procedures adopted by the client organization. This analysis is then benchmarked against the experience of the SL CERT team and a certain set of industry standards. The result is a detailed report of the weaknesses shown during the assessment and the necessary steps to mitigate them. These assessments are charged depending on the size of the ICT infrastructure of the organization, depth of the analysis and investigation conducted and the time allowed for the investigation.

Advisory for National Policy
This is a service that is performed by Sri Lanka CERT|CC as an obligation to the nation. As the primary authority on Information Security in Sri Lanka, Sri Lanka CERT|CC is responsible for developing, introducing and enforcing Information Security Standards to its constituency.

Events
Cyber Security Week