Q-CERT conducts security research, technical evaluation and analysis on new and existing security technologies on a regular basis.The knowledge and experience gained from this research is used to provide vendor-neutral guidance to Q-CERT constituents to assist them in making informed decisions.
The CIIP Database will map interdependencies and interrelations between various critical information assets in the country, across all critical sectors.
Assist in designing, reviewing and validating Business Continuity and Disaster Recovery plans by offering subject matter expert advice, based on the international best practices in the domain, as advocated by organizations such as the international disaster recovery institute (DRI) and Business Continuity Institute (BCI).
Q-CERT will on request of eligible government state agencies, review the maturity of information security within the organization in terms of management and technical requirements. Q-CERT will be assisting in the development of their policies, procedures and standards, and it will advise them on in its effectiveness, completeness and compliance to accepted standards.
Q-CERT will maintain a library of documents related to Information Security best practices and standards, including GIA Policies and related tools, and also, resiliency and risk assessment related references. These will be available as a single point of reference for Government agencies and other interested constituents.
Any person working in a technology driven environment must be exposed to the threats faced by these environments from the perspective of regular intended use.
To make the most of technology, users must be empowered with knowledge of secure practices and methods to minimize the risks associated with their use.
A key initiative of the Cyber Security division is to provide internationally accredited training programs to constituents.
Constituents can earn internationally recognized credentials by completing the program requirements.Training programs are announced to constituents through several means (e.g. email) and also published online at the website (www.qcert.org).
Q-CERT can provide analysis of binary files to identify potential threats or evidence of harmful content.
Such binary files may be collected as evidence and submitted for analysis. These may be recovered from exploits involving cyber attacks, corporate espionage or compromise of information infrastructure.
Provide national-level Security Threat Status Report on a quarterly and annual basis. This report presents a representation of Q-CERT’s findings from diverse resources including own sensors and 3rd party sensors. Data collected is analyzed for better understanding of current threats, trends and mitigating risks.
Provide non-urgent weekly information and updates relevant to cyber security threats, vulnerabilities, information security news, announcements, tools, standards, books, whitepapers, conferences, cyber crime techniques, technical analysis etc.
