Getting your Trinity Audio player ready...
|
This month, the National Cyber and Crypto Agency (BSSN) launched 17 cyber incident response teams at central government agencies, commonly referred to as Computer Security Incident Response Teams (CSIRT). CSIRT is a group of cyber security professionals and experts responsible for identifying, managing, and responding to cyber security incidents within an organisation or community. The main goal of CSIRT is to detect, analyse, and handle potential or ongoing cybersecurity incidents to protect the organisation’s information systems and data.
The event began with a report by BSSN’s Deputy for Cyber Security and Crypto for Government and Human Development Sulistyo. In his presentation, Sulistyo said that the goal of strengthening and developing CSIRT in the central government sector is to declare the existence of CSIRT Organisations that are responsible for handling cyber incidents to leaders, CSIRT constituents, and the public; socialise CSIRT services, complaint procedures, and coordination channels in the event of a cyber incident; and provide a shared understanding and perception in the management and collaboration of CSIRT Organisations in the central government sector.
Hinsa Hasibuan, the head of BSSN Indonesia, said that Presidential Regulation No. 18 of 2020 on the 2020-2024 RPJMN has mandated the establishment of 131 CSIRT as one of the strategic priority projects. In his presentation, he added that BSSN had built 116 of 131 CSIRT. In addition, the establishment of CSIRT is also regulated in Presidential Regulation No. 82 of 2022 on the Protection of Vital Information Infrastructure (IIV) Article 4, which states that the IIV sector includes government administration. In Article 12, the IIV organiser forms an Organisational Cyber Incident Response Team (CSIRT).
“All CSIRTs in the 17 Ministries/Agencies are expected to be able to form a safe and conducive electronic system for each institution to support synergy, collaboration, and commitment to realise a safe and prosperous cyberspace,” explained Hinsa.
The formation of the Computer Security Incident Response Team (CSIRT) is needed because cyber incidents in government institutions are increasing. “There is no perfect AI. What’s there is continuous learning,” Hinsa said to the participants. He revealed that one of the essential factors in using AI is data security and privacy. In addition, structured data is also essential, so human involvement is needed at the beginning of deployment.
The presence of CSIRT will be a significant force in guarding the information security system in Indonesia. So the presence of CSIRT is expected to realise the resilience of information security in the Electronic Government System (SPBE). In this case, BSSN cannot stand alone, so it requires the active participation of all parties in resolving incidents quickly, accurately, and effectively. BSSN hopes that government institutions can work together with other institutions.
By fostering collaboration and implementing advanced technologies, CSIRT endeavours to create a robust framework that enables coordinated actions to mitigate and counter emerging cyber threats. The team’s mandate includes proactive monitoring, incident response, and the development of effective strategies and guidelines to ensure a resilient cybersecurity posture for Indonesia.
With the increasing number of CSIRTs formed in the government sector, this will build independence and readiness in facing the threat of cyber incidents and contribute directly to maintaining cyber security in Indonesia,” said Hinsa.