EDUCSIRT (EDU Computer Security Incident Response Team)

The use of the internet has grown substantially among school students in the last decade. Although the Internet can be considered as the world’s largest resource repository, the threats associated with it cannot be underestimated.  It is difficult to overcome all the threats by using only technology since many of these incidences are caused by users who don’t know how to manage their privacy and access privileges. This could be mitigated to a great extent if the users could be provided with the proper awareness on managing their security.

The ICT Branch of Ministry of Education had started awareness campaigns with Sri Lanka Computer Emergency Readiness Team since 2011. However, this alone will not suffice to cover total intended target group.

To address this, ICTA in collaboration with the Ministry of Education ICT Branch, Sri Lanka Computer Emergency Readiness Team (SL CERT), the National Child Protection Authority (NCPA) and United Nations Children’s Fund (UNICEF) launched the EDUCSIRT  (EDU Computer Security Incident Response Team) initiative  to establish a trainers pool empowered by comprehensive training towards forming school level internet readiness teams.

Seven four day residential workshops from year 2016 to 2017 were conducted at in Hotel Mirage, Colombo 06 with the involvement of around 500 participants.

Teachers from zonal and provincial ICT centers, dedicated ICT teachers and ICT in service advisors from all islands were selected to train through these residential workshops and these workshops were conducted by technical experts in the domain.

The program was conducted interactively with group activities, presentations and Q&A sessions. Participants actively participated in all the activities. They gained immense knowledge on the domain towards bringing together a Core Leadership Group of cybersecurity experts to recommend actions that could improve the cybersecurity workforce pipeline. The participants acknowledged the workshop, as a great opportunity to brainstorm and to speak candidly of lessons learned about things that worked and things that did not work in their own experiences.

In Essence

Partners

ICTA, Ministry of Education ICT Branch, Sri Lanka Computer Emergency Readiness Team (SL CERT), the National Child Protection Authority (NCPA), United Nations Children’s Fund (UNICEF)

•  Proper awareness on managing security among school teachers and students
•  Proper awareness on basic cybersecurity concepts and definitions
•  Identification of cybersecurity roles
•  Proper awareness on basic security architecture principles
•  Proper definition of the types of incidents and identification of elements of an incident response plan
•  Proper awareness on the basic procedures for processing digital forensic data

•     500 trainers trained under this initiative are actively practicing those in their schools
•    Establishment of the EDUCSIRT unit
•    Establishment of school level internet readiness teams

•    Developed an “Information Security Policy” to schools

objectives

  • To bring together a Core Leadership Group of cybersecurity experts consisting of instructors from Zonal and Provincial ICT centers, Dedicated ICT teachers and ICT in-service Advisors to recommend actions that could improve the cybersecurity workforce pipeline
  • The participants approached the workshop as an opportunity to brainstorm and to speak candidly of lessons learned about things that worked and things that did not work in their own experiences.
  • Understand basic cybersecurity concepts and definitions
  • Identify Cybersecurity roles
  • Understand basic security architecture principles
  • Define types of incidents and identify elements of an incident response plan
  • Be aware of the basic procedures for processing digital forensic data
  • Recognize new and emerging information technology, and identity the associated security implications
  • To develop and enforce an Information security policy for all education establishments

Services
·       Development and enforcement of an Information security policy for all education establishments.
·       Security vulnerability alerting, with alerts being tailored to identify weaknesses in their environments and take necessary corrective measures.
·       Be the First-level Incident Response, and first point of Incident Response escalation, in the event that internal security teams cannot resolve incidents within a defined timeframe.
·       Running of regularly scheduled awareness campaigns to educate constituents on the vulnerabilities and threats faced by widely used ICT technologies and pertinent measures of protecting themselves from such threats

work
•    Understand basic cybersecurity concepts and definitions
•    Identify Cybersecurity roles
•    Understand basic security architecture principles
•    Define types of incidents and identify elements of an incident response

plan
•    Be aware of the basic procedures for processing digital forensic data
•    Recognize new and emerging information technology, and identity the associated security implications

Top