ITU's 160 anniversary

Committed to connecting the world

Measure and Improve the National CIRT Maturity

​​CyberDrill 2021 Homepage

MEASURE AND IMPROVE THE NATIONAL CIRT MATURITY


National CIRTs play a special role in their national cybersecurity system. Nowadays, most of existing cybersecurity ecosystems include a CIRT (aka CERT or CSIRT) as a critical part of the whole concept how to ensure the appropriate cybersecurity level on the national level. Thus the establishment and the development of CIRTs should base on the mature models which give both - a good roadmap how to build and run such team as well as a measurement system to evaluate a condition of a team. These values are provided with the SIM3 (Security Incident Management Maturity Model) methodology. For more than 10 years of its existence, it proved a great value for organizing the incident management in many environments, including national level ones.  
During the training participants will learn about the SIM3 model, how to use it and what are its key benefits for the National CIRT-s. With the examples of a few parameters, from the group of 40 of them, participants will learn how to describe and measure a level of maturity in organizational, human, technical and process areas. Additionally the online tool for the self-assessment activity will be presented and explained. 
This training will refer to the ITU work on this field and will propose a practical idea how the model could babe used by the National CIRTs.

TRAINING




14 October 2021


14:00 - 16:00 Geneva time, CEST


Spe​akers​​

Live
Captioning
Archive




Registration: Training

​​
Remote participation Registered user only


DOCUMENTS



SPEAKERS



Don Stikvoort MSc is founder of the companies “S-CURE” and “Cross Your Limits”. S-CURE offers senior consultancy in the area of cyber security – specialising in security incident management (CSIRT), governance/policy matters and ​​translating theories and policies to real life. Cross Your Limits offers life/exec coaching and trainings in “human arts”. Based in The Netherlands, Don’s client base is global.
After his Master’s degree in Physics, he became Infantry platoon commander in the Dutch Army. In 1988 he joined the Dutch national research network SURFnet. In that capacity he was among the pioneers who together created the European Internet since November 1989. He recognised “security” as a future concern in 1991, and was co-founder and chair of the 2nd CSIRT in Europe (now SURFcert) from 1992-8, FIRST member since 1992 – later Don became a FIRST Liaison Member, until today.
Together with Klaus-Peter Kossakowski he initiated and fostered the closer cooperation of European CSIRTs ever since 1993 – this led to the emergence of TF-CSIRT in 2000. In 1998 he finished the "Handbook for Computer Security Incident Response Teams (CSIRTs)" together with Kossakowski and Moira J. We​​st-Brown of CERT/CC. He was active in the IETF and RIPE (co-creator of the IRT-object). Don chaired the Program Committee for the 1999 FIRST conference in Brisbane, Australia, and kick-started the international FIRST Secretariat in the same year. From 2001-2011 his company ran TF-CSIRT’s Trusted Introducer service. He authored and taught several training modules for the CSIRT community, some of which are being used worldwide today, e.g. as part of TRANSITS.
In 1998 Don started his first company. A first assignment was to build the network connecting over 10,000 schools in The Netherlands. Many CSIRTs were created with his help and guidance, among which the Dutch national teeam (NCSC-NL), and teams for universities, major hospitals and big corporations like Philips. Second opinions, audits and maturity assessments in this field have become a specialty – and in that capacity Don developed SIM3 in 2008, the maturity model for CSIRTs which is used worldwide today for maturity assessments and certifications. SIM3 has now been taken under the wings of the not-for-profit “Open CSIRT Foundation” (OCF). Don was one of the founders in 2016 and now chairs its board.
Starting in 1999, Don was certified in NLP, Time Line Therapy®, Coaching, Hypnotherapy and other psychotherapy forms, and started what is now Cross Your Limits as a result. Cross Your Limits’ portfolio is life & executive coaching, and workshops and intensive training courses in what Don likes to call “human arts”, leading to internationally recognized certifications. He also trains communicators, presenters and trainers, including many in the CSIRT field.
Don thrives as motivational and keynote speaker. He enjoys to share his views on how the various worlds of politics, economics, psychology and daily life, but also cyber security, all intertwine and relate – and how increased understanding of this “texture” and a better ability to express ourselves, increase our ability to bring good change to self – and the world around us. He has discussed such topics in keynote talks from The Hague to Bali, from Hamburg to Mauritius and from Rome to the Australian Outback. His goal is to challenge his audience to gain deeper insight and understanding, and motivate them to be the difference that makes the difference, reminding them of the old African proverb:
“If you think you’re too small to make a difference, try sleeping in a closed room with a mosquito”.
Don created the SIM3 maturity model for CSIRTs, is a sought-after keynote speaker and also finds the time to do executive coaching and psycho therapy with a limited set of clients.

Mirosław Maj (Cybersecurity Foundation, Open CSIRT Foundation, ComCERT.PL) 
Over 20 years of experience in ICT security. Founder and president of the Cybersecurity Foundation, Vice-president of the ComCERT company, a former leader of CERT Polska team. The member of the Digital In 2017-2018 he was the adviser to the Minister of National Defence of Poland on planning cyberdefence capabilities and building organizational structures and establishing international cooperation in the field of cyberdefence. In March 2021 was appointed a member of the Digitalization Council at the Ministry of Digital Affairs.
Initiator of Polish Civic Cyberdefence organization. Co-founder of Open CSIRT Foundation - the stewardship organisation for SIM3 model and co-provider of Trusted Introducer service for CSIRTs, including processing of CSIRT formal certifications. Lecturer of cybersecurity courses on few universities. 
European Network Information Security Agency expert and co-author of many ENISA publications including CERT exercises and papers on improvement CSIRT maturity. He organised 10 editions of cyber exercises (Cyber-EXE™) in several countries for most essential sectors (e.g energy, banking, telecommunication). Speaker on many international conferences including the FIRST conferences. He is also the originator and organiser Security Case Study conference, one of the largest cybersecurity event in Poland.