النسخة العربية

Oman National CERT Towards a safe cyber environment

Awareness lecture in Abdullah bin Sallam School

Awareness lecture in Abdullah bin Sallam School

Oman National CERT is organizing an awareness lecture on the topic of Blackmailing in Abdullah bin Sallam School in Al Amral – Muscat

View
Technical School Gathering Event in Hail Alawamer School

Technical School Gathering Event in Hail Alawamer School

Oman National CERT is participating in a technical school gathering event in Hail Alawamer school in Muscat...

View
COMEX 2017

COMEX 2017

The participation of Oman National CERT at COMEX 2017, organized by the Information Technology Authority (ITA), through a number of activities and programs, that aims to illustrate the services provided by OCERT

View
Safer Internet Day 2017

Safer Internet Day 2017

Over the years, Safer Internet Day (SID) has become a landmark event in the online safety calendar. In the Sultanate, Oman National CERT as the official SID National Committee is taking the initiative nationally...

View
ITU Arab Regional Cyber Security Center and Oman Oil Company organize a workshop on protecting O&G

ITU Arab Regional Cyber Security Center and Oman Oil Company organize a workshop on protecting O&G

ITU Arab Regional Cyber Security Center and Oman Oil Company (OOC) in collaboration with Oman National CERT...

View

Share it

Online Incidents Report
Request OCERT Services
Information Security Glossary

Proactive Services

Proactive Services

Training Session

Proactive services are designed to improve security of the constituency before any incident or event occurs or is detected. The main goals are to avoid incidents, and to reduce their impact and scope when they do occur.


  • TAC to provide Technology Watch that enables the OCERT to monitor and observe new technical developments, intruder activities, and related trends to help identify future threats.
  • Disseminate security related information
  • Provide external vulnerability assessment and penetration test to detect any threats in the system.
  • Provide awareness and training to constituents who require more information and guidance to better conform to accepted security practices and organizational security policies.
  • Provide best practices in the implementation of the IT infrastructure. i.e. useful links to PC scan services, free trusted security tools such as. Anti Virus, Firewall, etc.

Security Advisory Alerts and Warnings

  • Disseminate information that describes security incidents such as intruder attacks, security vulnerabilities, intrusion alerts, computer virus, or hoax.
  • Approve the information to be disseminated.
  • Provide any short-term recommended course of action for dealing with the resulting problem.
  • Provide guidance for protecting the systems or recovering any systems that were affected.
  • Notify various parts of the enterprise or constituency about the vulnerability and share information on how to fix or mitigate the vulnerability.
  • Communicate with vendors, other CSIRTs, constituent members, and the individual groups who initially discovered or reported the vulnerability.

External Vulnerability Assessment and Penetration Test

  • Periodic external vulnerability assessments and external penetration testing shall be performed to properly secure the organization's infrastructure.  These will outline the security posture of the organization's Infrastructure.
  • External Vulnerability Assessment and Penetration test is one of the methods to detect new threats in the system that is already implemented. It is advisable to perform periodical assessment to the system to ensure that the system is installed with latest patches.

Discovering New Threats via Research and Analysis

  • CERT is able to provide a mean of discovering new threats in the cyber world.
  • Threat and Analysis team will study and analyze the logs collected in the system to identify how hackers were able to intrude into the system and at the same time discover flaws in the system.
  • CERT will share the information with the constituents on any new findings.

Website URL Monitoring

  • Website monitoring is a service for gathering and analysing all information related to security incidents such as website defacement and website unavailability.

Security Training and Awareness

  • CERT provides training and awareness to educate the committee on the importance of security.
  • Training can be in the form of e-learning or classroom training. The objective is to ensure that the knowledge is being shared.
  • Request Vulnerability Assessment Service