Sie sind auf Seite 1von 16

THE PRIME MINISTER OF SOCIALIST REPUBLIC OF VIETNAM

GOVERMENT Independence - Freedom - Happiness


------- ---------------
No.: 1622/QĐ-TTg Hanoi, 25 Oct 2017

DECISION

APPROVING THE PROPOSAL FOR PROMOTING THE INCIDENT RESCUE NETWORK,


STRENGTHENING THE COMPETENCE OF THE OFFICERS AND DEPARTMENTS
RESPONSIBLE FOR RESCUING THE CYBER INFORMATION SECURITY INCIDENTS
NATIONWIDE BY 2020, ORIENTATION BY 2025

THE PRIME MINISTER

Pursuant to the Law on Organization of Government dated June 19th, 2015;

Pursuant to the Law on Information Technology dated June 29th, 2006;

Pursuant to the Law on Telecommunication dated December 04th, 2009;

Pursuant to the Law on Cyber Information Security dated November 19th, 2015;

Pursuant to the Government’s Decree No. 72/2013 / ND-CP dated July 15 th, 2013 on the
management, provision, the use of the Internet services and information on the Internet;

Pursuant to the Government's Decree No. 85/2016 / ND-CP dated July 1 st, 2016 on assurance
of information system security at levels;

Pursuant to the Government's Decree No. 17/2017 / ND-CP of February 17 th, 2017 defining the
functions, tasks, powers and organizational structure of the Ministry of Information and
Communications;

Pursuant to the Prime Minister's Decision No. 05/2017 / QD-TTg of March 16 th, 2017 providing
for the system of emergency response plans to ensure the safety of national information networks;

Considering the recommendation of the Minister of Information and Communications;

DECIDES:

Article 1. Approving the proposal for promoting the incident rescue network, strengthening the
competence of the officers and departments responsible for rescuing the cyber information
security incidents nationwide by 2020, orientation by 2025 (hereinafter referred to as The
Proposal) with the following details:

I. OBJECTIVES

1. Orientation by 2025

- Build Vietnam Computer Emergency Response Team (VNCERT) - National Coordinating


Agency for Incident Response (hereinafter referred to as the National Coordinating Agency) to
become a strong, professional, competent unit in terms of human resources, technique,
technology in order to manage cyber security incidents nationwide, response quickly, coordinate
rapidly and effectively, be ready to assist to tackle critical cases, be the core organization to
assure national network information security.

- Build an incident rescue network of national information security (Incident rescue network) to
be strong in technique, operate professionally, associate with the responsible units, co-operate
firmly, ensure to coordinate the forces promptly, synchronously, effectively in order to response
to cyber incidents and prevent network attack.

- Form the units, bodies in charge of incident response, guarantee the network information
security of the ministries, branches, localities, corporations, organizations, large-scale enterprises,
to be excellent in technique, run professionally, prevent effectively, be prepared to response to
incidents and network attacks.

- Foster and grow human resource, experts in incident response and network information security
warranty who belongs to the network members having technical knowledge, good skills, research
aptitude, analytical ability, proficient competence, being disciplined, complying with the process,
being willing to response quickly to and tackle kinds of incidents, network attack exactly and
promptly.

2. Detailed objectives by 2020

- Increase the proficiency of National Coordinating Agency by designing processes, management


and coordinating proficiency; invest in the systems for actively tracking, gathering incident
information; improve receiving, archiving and processing information system; enhance operating
ability and sharing incident information.

- Promote the activities of the incident response network and responsible units, steering and
operating agency of network information security incident.

- Improve the ability of keeping track of, gather, analyze, detect incidents, coordinate and
response to network-wide incident.

- Encourage to foster, train, expand human resource in incident response and cyber security
insurance.

- Raise the recognition of and disseminate the knowledge of network risk and incident, enlarge
coordination, incident response, network information security warranty.
- Promote international co-operation, information disclosing, experience sharing and rise the
ability of coordinating with agencies, organizations specializing in cyber security and emergency
response (CERT) of countries.

II. THE MAIN DUTIES

1. Duty 1: Enhance the aptitude of National Coordinating Agency

a) Purchase, upgrade hardware, software equipment, infrastructure in order to ensure the


activities of National Coordinating Agency (VNCERT) for effectively response to incidents of
cyber security.

b) Construct, operate the technique center of nationwide cyber security with the following
essential systems:

- The system of technique center for protecting cyber security SOC (Vietnam Cyber Security
Operations Center).

- The system of cooperating electronically, secured electronic information portal and channel of
exchanging, sharing information for National Coordinating Agency and incident response
network (CERTs Network Portal and Communication Media).

- The system of gathering, receiving, archiving and processing information of risk, cyber security
incident; the system of analyzing, verifying, classifying cyber security incidents for coordinating
to response to incidents.

c) Build up, operate Research Center, experiment with and assess the product, examine on the
aptitude of cyber security at National Coordinating Agency (VNCERT Security and Verification
Lab).

d) Purchase, build up, operate the system of examining the capacity of information security, the
system of simulating attack and defense for coaching, rehearsal of incident, cyber security
guaranty.

dd) Create the Proposal of innovating the organization and improve the capacity of National
Coordinating Agency.

The items from the article a to d on duty 1 are invested synchronously in terms of the followings:

- Investing in technical system with modern, advanced technology

- Building up, applying modern, effective processes, professional knowledge and operation
methods

- Developing, fostering, maintaining the highly qualified workforce and leasing technical service
in order to preserve, operate, assure the activity of the system

2. Duty 2: Reinforce and improve the effectiveness of incident rescue network


a) Build up and implement an annual plan of the following agencies, organizations: incident
response network and network Executive Board; Steering Committee and Standing Body of
coordinating to response to incidents, National Coordinating Agency and units in charge of
incident rescue; incident response team; the department of implementing emergency response;
group of professor analyzing risks, cyber security incident and supporting emergency response to
critical network incident.

b) Build up and implement the plan of responding to incident and ensuring cyber security.

c) Step up the common activities of the incident rescue network: Annually organize 04
conferences on handing over network; 03 seminars to provide, exchange, update information,
experience, professional knowledge; 6 business trips to work, survey, inspect, urge, manage tasks
to coordinate and rescue incidents.

d) Make a survey, collect, analyze, verify, investigate electronically and purchase incident
information services in order to build databases, reports and assessments on cyber security
incidents, malware, network attacks, and network information security guaranty.

dd) Study new techniques and technologies for coordination, rescue and prevention of network
attacks; build and support to deploy and apply procedures and regulations on the management
and coordination of the rescue network on a case-by-case basis and according as each type of
incident.

3. Duty 3. Intensify gathering, analyzing, verifying and warning, coordinating and responding to
cyber security incidents of the National Coordinating Agency, units and member organizations of
the incident rescue network

a) Strengthen monitoring, collection, analysis, verification and risk assessment for early detecting
and timely warning of cyber security incidents:

- Implementing by ourselves or renting services to continuously monitor, collect and analyze


incidents from the incident rescue network and domestic agencies and organizations; from
breakdown rescue organizations and foreign cyber security organizations; from forums, reputable
websites about cyber security; source from the national network information security monitoring
centers;

- Organizing investigations, analysis of digital data, verification and classification of incidents;

- Promptly alerting network members, related agencies and organizations when detecting cyber
security risks or incidents.

b) Coordinate and rescue incidents:

- Creating and doing the implementation of plans and projects on network information security
incident response and emergency rescue, ensuring the safety of national network information;

- Timely coordinating ISPs, telecom enterprises and network members to cooperatively handle,
prevent and overcome problems;
- Studying and elaborating plans and promptly guide agencies and organizations suffering from
incidents to handle and overcome the problem;

- Providing the assistance to rescue and handle incidents in the important information technology
systems of state agencies and e-Government when specialized units, local incident rescue teams
and management unit, operating system unit cannot handle it;

- Guiding to determine workload, loss and make payment to organizations and enterprises
participating in incident response according to the coordination of competent agencies.

4. Duty 4: Rehearse disaster rescue, preventing network attacks

a) On national scale:

- Annually holding 1 national-level rehearsal and 3 rehearsals by regions or by branch or sector;

- Conduct 03 to 05 international drills annually including: rehearsing with Asia Pacific Computer
Emergency Response Team (APCERT); rehearsing with Japan and ASEAN countries (ASEAN -
JAPAN); Southeast Asia (ACID) and other international exercises;

- Researching, constructing, leasing, purchasing equipment and software suitable for simulation
and implementation of scripts for rehearsal and replication.

b) On ministry level, province level, centrally-run city level:

Annually, each ministry, city or province shall conduct at least 1 rehearsal on information safety
and network incident rescue inside the ministries, branches and localities; coordinate and
participate in national and international rehearsals organized by the National Coordinating
Agency, Ministry of Information and Communications.

5. Duty 5. Develop the forces and raise the capability of human resources to ensure the network
information security

a) Arranging training courses, coaching and examinations for issuing technical and skill
certificates to the coordination forces, rescue and incident response forces, forces ensuring
network information safety including: training on coordination skills, rescue, analysis and risk
and incident investigation; training in techniques and technologies for information security;
training on hacking methods, tricks and frauds;

b) Arranging training courses to improve professional level and skill, raise awareness, and
disseminate relevant knowledge including process, risk management, international standards for
cyber security; to improve the level of foreign language proficiency, legal knowledge, work
ethics and other relevant training for state agencies and members of the incident rescue network;

c) Building and developing human resources in combination with hiring highly qualified human
resources, organizing and maintaining activities of groups and teams of specialists in analyzing
and responding to incidents, emergency rescue teams ensuring cyber security; organizing and
maintaining forums about information security;
d) Formulating and promulgating the standards, requirements and certificates of skills and
training programs necessary for experts in supervision, coordination, rescue, analysis,
classification and investigation of risks, incident, malicious code and other technical information
security experts;

dd) Formulating and submitting to competent authorities for promulgation specific mechanisms
and preferential policies in order to attract and enhance the capability of personnel to coordinate
and rescue incidents and ensure information safety of the incident rescue network and the
National Coordinating Agency.

6. Duty 6: Strengthen the capacity and organize operation for units and departments in charge of
emergency response across the country.

a) The ministries, the ministerial-level agencies, the provinces and centrally-run cities:

- Investing in construction and operation of technical systems to support the protection and rescue
of incidents and cyber security guaranty within the ministries, branches and localities;

- Developing and doing the implementation of measures to rescue incident and ensure network
information security of ministries, branches and localities;

- Taking the initiative and coordinating with the National Coordinating Agency to monitor,
collect and archive logs and events on the systems under management; analyzing and verifying
incidents within the domains and localities; reporting on incident and sharing with the national
incident management agency about logs, information on the systems under management when
requested;

- Continuously receiving and processing the warning information and coordination requests from
the National Coordinating Agency and informing the concerned agencies and units for
coordinated implementation;

- Rescuing and handling incidents within one’s own domains and localities;

- Requesting for rescue assistance in case of being beyond one’s means; Reporting on the
implementation of the coordination order;

- Deploying or hiring services of cyber security guaranty for the information systems under one’s
management responsibility.

b) Telecommunication and Internet enterprises

- Taking the initiative and coordinating with the National Coordinating Agency to conduct and
deploy equipment for observing, monitoring, gathering and archiving logs and events on Internet
systems and networks administered; analyze and verify incidents in the domains or geographical
areas they are responsible for; notify when detecting incidents and share with the national
incident coordinating agency about information, logs and events on the systems and Internet
under their management when requested;
- Observing the coordination orders of the National Coordinating Agency, mobilizing resources to
promptly support the handling, prevention of attacks, overcome the consequences of the incident;

- Arranging and meeting the technical conditions to deploy and install the monitoring equipment
and connect to the central system of the National Coordinating Agency for coordination, rescue
and cyber security guaranty.

7. Duty 7: Formulate and apply international standards to standardize processes, risk provisions,
protect network information safety

a) Creating, applying and evaluating the risk management procedures, network information
security guaranty in accordance with ISO / IEC 27xxx and other standards of information
security for members of the incident rescue network, and units managing and operating important
data centers and information systems of the ministries, ministerial-level agencies, provincial-level
People's Committees, telecommunication enterprises, the Internet and the center data, financial
institutions, banks, governing body of national important information systems;

b) Supporting to conduct training courses on ISO / IEC 27xxx standards and other standards of
network information security for emergency response forces, officers managing and operating
Data center and information system mentioned at point “a” of this clause.

III. FUND FOR IMPLEMENTATION

1. Capital

The central budget, local budget, Vietnam Public-utility Telecommunication Service Fund – VTF,
the revenues of bodies and units permitted for use according to regulations, non-refundable aid
capital and other legal funds.

2. Capital structure

a) The capital from the central budget, local budget, Vietnam Public-utility Telecommunication
Service Fund and other capital sources managed by the central agencies shall be allocated to
perform the tasks and projects under this Decision chaired by the Ministries, ministerial-level
agencies, government-attached agencies and a number of other tasks in the enclosed appendices;
The ministries, the ministerial-level agencies and the agencies attached to the Government shall
base on the assigned contents and tasks in this Decision to make plans, projects and cost
estimation and request approval, allocate funds to comply with current regulations;

b) Local budgets and other capital sources managed by localities shall cover funding for other
projects and tasks defined in this Decision and executed by local agencies; The People's
Committees of the provinces and centrally-run cities shall base on the assigned contents and tasks
to organize the elaboration of plans, projects, cost estimation and approvals according to their
competence or submit them to the People's Councils for approval to allocate funds to comply
with current regulations;

c) Prioritizing scientific and technological funds for the deployment of research and analysis of
technology, techniques, risks, incidents, methods and attack tricks and prevention methods to
enhance their capability of research and analysis for rescue forces and other tasks and projects
under this Decision.

3. For contents and tasks using the state budget, agencies and organizations shall base themselves
on the contents and tasks in this Decision to annually make budget estimation and include them
in their budget plans of the agencies and organizations, send to the finance agencies at the same
level for summarizing and submitting the budget allocations for approval according to the
provisions of law on the state budget for implementation.

4. For tasks and projects prioritized to use the capital from the Vietnam Public-utility
Telecommunication Service Fund in Appendix II issued together with this Decision, the Ministry
of Information and Communications shall, based on the assigned contents and tasks, make
specific plans and projects, estimate expenditure, complete approval procedures according to
current regulations; If the funding from the Vietnam Public-Utility Telecommunication Service
Fund cannot be allocated, it shall be considered and allocated from the central budget for
implementation. By the time building and supplementing the investment budget plan for the
period 2018-2020 and 2021-2025 is needed, the Ministry of Information and Communications
shall chair and coordinate with the Ministry of Planning and Investment and the Ministry of
Finance to check tasks and projects for which have not yet been allocated funds in Appendix I,
Appendix II promulgated together with this Decision, then include them in the budget plan for
the subsequent period in order to allocate and supplement funding for implementation.

IV. IMPLEMENTATION

1. The Ministry of Information and Communications

a) Presides, coordinates with other ministries, sectors and People’s Committee of provinces and
centrally-run cities and the relevant bodies and organizations to deploy, urge, inspect and make
periodical summary and assessment of implementation result of this Decision; report to the Prime
Minister on the implementation result and recommends the modification or addition of content of
this Decision in case of necessity.

b) Establishes the Executive Committee to coordinate, urge, inspect and guide the Decision
implementation with a leader of the Ministry of Information and Communications as the Head of
Executive Committee and the standing department of Executive Committee, the National
Coordinating Agency; chair to deploy the content, duties specified on this Decision on a National
scale.

c) Presides over to elaborate plans, coordinates with concerned agencies and organizations in
deploying emergency response plans for assuring the national information network safety;

d) Intensifies the information and dissemination of knowledge and legislation on network


information safety, educate to raise awareness on coordination, incident rescue and attack and
fraud prevention on the Internet.

2. The Ministry of Science and Technology


a) Presides over and coordinates with the Ministry of Information and Communications to invest
in research and develop tools, products and solutions to rescue incidents and ensure the cyber
security in order to increase the technological capability of Vietnam;

b) Prioritizes scientific and technological capital, capital sources from national hi-tech
development programs and national product development programs to develop product, service
and domestic solutions for rescuing incidents, ensuring the safety of information network and
implementing some related contents and tasks in this Decision

3. The Ministry of Finance

a) Balances and allocates the state budget capital for regular expenditures and business
expenditures according to regulations in order to perform the tasks and projects mentioned in this
Decision;

b) Coordinates with the Ministry of Information and Communications in guiding the


implementation of the tasks and projects in this Decision from the Vietnam Public-Utility
Telecommunication Service Fund.

4. The Ministry of Planning and Investment

a) Allocates funds from the state budget for development investment according to regulations in
order to perform the tasks and projects mentioned in this Decision;

b) Considers and supplements the projects and tasks defined in this Decision into public
investment programs and plans, the program on information technology and relevant programs
and plans as well as balances and arranges the capital sources to speed up the implementation
progress.

5. The ministries and ministerial bodies, governmental bodies, People’s Committee of provinces
and centrally-run cities.

a) The heads of the ministries, branches, localities, agencies and organizations shall intensify the
direction and urge the setting up, formulation of annual working regulations and plans for
specialized units to rescue incidents, the rescue teams work actively and effectively; pay attention
to, and facilitate in order for specialized units in charge of rescue the incidents, the incident
rescue teams to participate fully and actively in the activities of the incident rescue network;

b) Preside over and coordinate with the Ministry of Information and Communications to organize
the implementation of the project's contents and tasks within the management scope;

c) Elaborate and promulgate regulations on coordination, incident rescue and operation plans of
incident rescue teams within the scope of the respective ministries, branches and localities;

d) Preside over to elaborate and deploy emergency rescue projects to ensure cyber security within
the ministries, branches and localities;
dd) Direct groups, corporations and enterprises having key information infrastructures in
localities under their respective management to form sections to respond to cyber security
incidents and closely coordinate with the National Coordinating Agency. Quickly create scenarios
and plans for prevention and response to possible incidents;

e) Direct the units managing and operating the important information systems under their
management to implement the tasks mentioned at Point a, Clause 7, Section II of this Article in
order to formulate and apply the information safety management model according to TCVN
ISO / IEC 27xxx standards.

6. The telecommunication enterprises, ISP and information security enterprise

a) Participate fully and responsibly in the activities of the incident rescue network; Support to
impulse the development of the incident rescue force and the incident rescue network;

b) Assign the leadership to be in charge of information security; Establish or appoint specialized


section on incident response; Closely participate in, coordinate with and comply with the
coordination of the National Coordinating Agencies to rescue incidents and ensure cyber security;

c) Implement the requirements for coordinating rescue response, support to prevent and handle
the incidents as requested from the competent authority in a serious way.

7. Vietnam Information Security Association and other relevant associations.

a) Coordinate with the Ministry of Information and Communications to implement the tasks of
the project;

b) Encourage members and member enterprises of the Association to actively participate in the
network and share information on information security and network attacks with the
Coordinating Agency.

Article 2. This Decision takes effect on its signing date.

Article 3. The Ministries, Heads of ministerial bodies, Heads of governmental bodies, Chairmen
of People’s Committee of provinces and centrally-run cities are liable to execute this Decision./.

Recipients:
- Secretariat of the Party Central Committee;
PRIME MINISTER
- Prime Minister; Deputy Prime Ministers;
- Ministries, ministerial-level agencies, agencies attached to the Government;
- People's Committees of provinces and centrally-run cities;
- Central Office and Party committees;
- Office of the General Secretary;
- Office of the President;
- Congress office; Nguyen Xuan Phuc
- The Supreme People's Court;
- The Supreme People's Procurator;
- State audit;
- Central Committee of the Vietnam Fatherland Front;
- Central bodies of mass organizations;
- Economic groups, State corporations;
- Vietnam Information Security Association;
- Vietnam Internet Association;
- Vietnam Software and IT Services Association;
- Vietnam E-commerce Association;
- Government office: Chairman, Vice chairmen, Prime Minister Assistant, General
Manager of the Portal, Departments: General Affairs; Integrated Economic
Affairs; National Assembly, Localities and Unions; Informatics center, Official
Gazette;
- Archive: Records, Department of Science, Education, Culture and Social Affairs
(2 copies). KN
Appendix I

LIST OF PROJECTS GIVEN PRIORITY TO USE FUND FROM CENTRAL BUDGET


(Issued with Decision No. 1622/QD-TTg dated October 25, 2016 by the Prime Minister)

Name of projects and duties Bodies in Coordinating


No. Time
charge bodies
I Projects, duties using the development and investment fund from central budget
Ministry of
Invest in, upgrade the equipment, software,
Information and
infrastructure in order to guarantee the 2018-
1 Communications
activities of VNCERT - National 2025
and the bodies in
Coordinating Agency for Incident Response
charge
Ministries,
Invest in hardware and software equipment, ministerial-level
instruments for incident response, rent agencies, Ministry of
2018-
2 technology service, train and foster government- Information and
2025
specialized incident response units, response attached Communications
team at the ministries and central bodies agencies, central
bodies
Invest in the construction of a technical
system to support to protect and recover
incident rescue data, ensure network
information security for the operation of the Ministry of Ministries,
system, e-government information Information and provinces, cities,
2018-
3 technology services and the systems Communications Telecommunications
belonging to the list of the important areas and the bodies in 2025
and Internet
which need being given priority to ensure charge enterprises
the cyber security and the national important
information systems

Build and operate a system to support Ministry of


Members of incident 2018-
4 coordination activities and information Information and
rescue network 2025
security incident rescue Communications
Invest in equipment, raise the capacity and Ministries, central
efficiency of coordinating rescue activities Ministry of agencies and
2018-
5 and ensuring network information safety at Information and localities having not
2025
the ministries, the central agencies and the Communications balanced the budget
local ones. yet
6 Invest in equipment and laboratory Ministry of Members of incident 2018-
operations, processes and documents for Information and rescue network 2020
research, testing, training and examining on
Communications
information safety skills.
The projects and tasks in the list given
priority to use funds from Vietnam Public-
Ministry of
utility Telecommunication Service Fund in Members of incident 2018-
7 Information and
Appendix II of this Decision but failing to rescue network 2025
Communications
allocate capital from the Vietnam Public-
Utility Telecommunication Service Fund.
II Projects and duties using non-business capital sources from the central budget
Maintain operation and lease technical
Ministry of
services to ensure the operation of the Members of incident 2017-
1 Information and
technical cyber security system of National rescue network 2025
Communications
Coordinating Agency.
Manage the operation of the incident rescue
network and the project executive board, the
Ministry of
incident rescue network executive board and Members of incident 2017-
2 Information and
National Coordinating Agency according to rescue network 2025
Communications
the provisions in Duty 2, Part II of this
Decision.
Deploy the activities of gathering, analyzing,
verifying and warning, coordinating and Ministry of
Members of incident 2017-
3 responding to cyber security incidents at the Information and
rescue network 2025
national level defined in Duty 3, Part II of Communications
this Decision.
Conduct rehearsals of incident rescue and
network attack prevention at the national
level according to the provisions in Clause a,
Duty 4, Part II of this Decision; conduct Ministry of
Members of incident 2017 -
4 training courses and coaching programs on Information and
rescue network 2025
information security, cyber security incident Communications
rescue, prevention of network attacks
according to the provisions of Clauses a and
b, Duty 5, Part II of this Decision.
Ministries,
Enhance the capability and arrange operation ministerial-level
Ministry of
of units and sections in charge of incident agencies, 2018-
5 Information and
response according to the provisions in Point government- 2025
Communications
a, Clause 6, Section II of this Decision. attached
agencies
6 Support the formulation and application of Ministry of Members of incident 2018-
international standards (ISO27xxx) and other Information and rescue network and 2025
information safety standards in order to Communications the units managing,
standardize procedures, risk prevention and operating the data
network information safety guaranty as centers, information
prescribed in Clause 7, Section II of this
systems
Decision.
Conduct international cooperation activities:
a) Participate in bilateral and multilateral
forums with CERTs of different nations and
other agencies, organizations specializing in
Ministry of
network information security across the Members of incident 2017 -
7 Information and
globe. rescue network 2025
Communications
b) Periodically conduct international
seminars with the participation of CERTs
and other network information security
organizations in the region and in the world.
Conduct training and testing programs,
develop forces and improve the capability of Ministry of
Members of incident 2018-
8 personnel to rescue incidents and ensure Information and
rescue network 2025
cyber security according to the provisions of Communications
Clause 5, Section II of this Decision.
Appendix II

LIST OF PROJECTS, DUTIES GIVEN PRIORITY TO USE FUND FROM VIETNAM


PUBLIC-UTILITY TELECOMMUNICATION SERVICE FUND
(Issued with Decision No. 1622/QD-TTg dated October 25, 2017 by the Prime Minister)

Name of projects and duties Bodies in Coordinating


No. Time
charge bodies
Ministry of Members of
Invest and upgrade the Vietnam Cyber
1 Information and incident rescue 2018- 2020
Security Operations Center (SOC)
Communications network
Build and operate an electronic operating
system, a secure electronic portal and a
Ministry of Members of
dedicated information exchange channel for
2 Information and incident rescue 2017- 2019
National Coordinating Agency and incident
Communications network
rescue network (CERTs Network Portal and
Communication Media)
Build and operate a system of collecting,
Ministry of Members of
analyzing, verifying, warning risk and
3 Information and incident rescue 2017 - 2020
incident of cyber security (Cyber Threat
Communications network
Intelligent System)
Invest in building and operating a center of Ministry of Members of
4 researching, testing, assessing cyber security Information and incident rescue 2018- 2020
(VNCERT Security and Verification Lab) Communications network
Invest in, build and operate the system of
testing information security and the system Ministry of Members of
5 of simulating attack and defense for the Information and incident rescue 2018- 2020
training and rehearsing incident rescue Communications network
missions.
Upgrade, renew software and equipment
licenses, lease technical services, personnel
Ministry of Members of
and maintain, operate and organize the
6 Information and incident rescue 2017 -2025
operation of the specialized centers and
Communications network
technical systems of National Coordinating
Agency
Conduct training, maneuvering and
fostering, training and coaching courses for
Ministry of Members of
emergency response forces of National
7 Information and incident rescue 2017 -2025
Coordinating Agency, members of the
Communications network
incident rescue network and large state
corporations and corporations
Conduct training courses and disseminate
legal knowledge on cyber security in order Ministry of Members of
8 to raise awareness about coordination, Information and incident rescue 2017-2025
incident rescue, prevention and fighting Communications network
against cyber attacks

Das könnte Ihnen auch gefallen