Proactive Services

Proactive services are designed to improve security of the constituency before any incident or event occurs or is detected. The main goals are to avoid incidents, and to reduce their impact and scope when they do occur.

• TAC to provide Technology Watch that enables the OCERT to monitor and observe new technical developments, intruder activities, and related trends to help identify future threats.
• Disseminate security related information
• Provide external vulnerability assessment and penetration test to detect any threats in the system.
• Provide awareness and training to constituents who require more information and guidance to better conform to accepted security practices and organizational security policies.
• Provide best practices in the implementation of the IT infrastructure. i.e. useful links to PC scan services, free trusted security tools such as. Anti Virus, Firewall, etc.

Security Advisory Alerts and Warnings

• Disseminate information that describes security incidents such as intruder attacks, security vulnerabilities, intrusion alerts, computer virus, or hoax.
• Approve the information to be disseminated.
• Provide any short-term recommended course of action for dealing with the resulting problem.
• Provide guidance for protecting the systems or recovering any systems that were affected.
• Notify various parts of the enterprise or constituency about the vulnerability and share information on how to fix or mitigate the vulnerability.
• Communicate with vendors, other CSIRTs, constituent members, and the individual groups who initially discovered or reported the vulnerability.

External Vulnerability Assessment and Penetration Test

• Periodic external vulnerability assessments and external penetration testing shall be performed to properly secure the organization's infrastructure.  These will outline the security posture of the organization's Infrastructure.
• External Vulnerability Assessment and Penetration test is one of the methods to detect new threats in the system that is already implemented. It is advisable to perform periodical assessment to the system to ensure that the system is installed with latest patches.

Discovering New Threats via Research and Analysis

• CERT is able to provide a mean of discovering new threats in the cyber world.
• Threat and Analysis team will study and analyze the logs collected in the system to identify how hackers were able to intrude into the system and at the same time discover flaws in the system.
• CERT will share the information with the constituents on any new findings.

Website URL Monitoring

• Website monitoring is a service for gathering and analysing all information related to security incidents such as website defacement and website unavailability.

Security Training and Awareness

• CERT provides training and awareness to educate the committee on the importance of security.
• Training can be in the form of e-learning or classroom training. The objective is to ensure that the knowledge is being shared.