Assist in Design and Implementation of Business Continuity and Disaster Recovery Strategies
To provide Disaster Recovery and related Business Continuity advisory services aimed at improvement of the current and future security posture of Critical National Infrastructure
organisations. [Pull Service]
AE2
Assist in Development of security policies, processes, procedures and standards
aeCERT will, on request of eligible constituents, offer recommendations with respect to the completeness and effectiveness of that particular organization’s existing or planned control measures in line with International best practices.
AE3
Disseminate security relevant information
aeCERT will provide accurate, relevant and timely information to constituents based on which organizations can initiate appropriate measures to:
Improve their general state of security readiness,
Reduce the likelihood of a successful attack on their information assets
Minimize the impact of an imminent security breach
AE4
Promote security awareness throughout the UAE
aeCERT will identify target areas where constituents require additional information and guidance in order to better protect themselves from cyber attacks. As one of its core activities, aeCERT will subsequently promote security awareness and skills through:
An ongoing, structured general security awareness program
National Outreach Programme
Host Subject Specific Seminars [see AE5]
Deliver Specialist Security Training [see AE7]
AE5
Host subject specific seminars
aeCERT will identify target areas where constituents require additional information and guidance in order to better protect themselves from cyber attacks. As one of its core activities, aeCERT will subsequently promote security awareness and knowledge through:
Subject-specific seminars
AE6
Host information exchange meetings amongst communities of interest
Acting as a trusted entity, aeCERT will facilitate such small-group interactions and ensure that information interchange and decisions are recorded and communicated within the wider scope of its constituent base
As one of its core activities, aeCERT will subsequently promote security awareness and skills transfer through:
Information exchange between communities of interest
AE7
Specialist security training
This service will facilitate the provision of structured education and knowledge transfer to constituents about computer security issues through formal workshops, training courses, tutorials and simulations facilitated by aeCERT.
AE8
Support for introduction of enhanced security technologies
To provide eligible constituents guidance and evaluation and recommendations regarding enhanced or emerging security technologies based on general aeCERT research activities or as a specifically requested and approved service offering to select constituents.
Advisory (Communications)
C1
aeCERT will develop long-term, trusted relationships with contributing organizations. Its aim will be to translate and contextualize the knowledge and experience obtained from these relationships, into value added best practice conventions on behalf of constituents.
Constituents will be able to leverage the Intellectual Property created as a result in designing and implementing their internal counter-measures.
C2
Coordinate national and international authorities and CERTs
To coordinate all communications with national and international authorities and CERTs during Incident Response [Internal function - Pull service
Monitoring and Response
M&R1
Provide specialized security advice
aeCERT will, on request of eligible constituents, offer recommendations with respect to the provision of specialized security advice.
M&R2
Issue preliminary alerts and advisories to constituents
aeCERT will provide proactive services in the form of preliminary alerts and advisories to advisories and constituents to improve their infrastructure and related security processes before any incident or event occurs or is detected
M&R3
Gather information from constituents regarding incidents within their own operating environments
aeCERT relies on data, gathered from its constituents and other sources to develop actionable intelligence from the analysis of threat, incident and vulnerability data. This information enables aeCERT to deliver short term, reactive information, as well as announcements, guidelines, or recommendations that pertain to longer term security issues.
M&R4
Provide support for remediation and recovery
aeCERT will provide support and advice during remediation and recovery from security incidents.
M&R5
Act as central point of contact during cyber attacks on the critical national infrastructure
During high profile, targeted cyber attacks against the critical national infrastructure the aeCERT will act as a central point to disseminate information and advice to all its constituents.
Research and Analysis
R&A1
Maintain a database of Critical National Infrastructure Constituents and their high-level IT infrastructures (Internal Function)
This function will focus on the development and maintenance an accurate database of UAE Critical National Infrastructure constituents and their high-level IT infrastructures.
R&A2
Provide information relevant to risk analysis & security assessments
The purpose of this function is for the aeCERT to add value to risk analysis and assessments for selected constituents.
R&A3
Provide a central repository of best practice standards and methodologies
Through affiliates, strategic partners and interaction with constituents, regional and global peer groups, aeCERT will gather and refine best practice standards and technologies related to technologies and supporting security processes.
R&A4
Research and assess technologies
aeCERT will conduct ongoing research and analysis on new and existing technologies together with its related services, aeCERT will subsequently use the knowledge and experience gained from this research to provide expert advice to selected constituents.
R&A5
Provide targeted timely and relevant information about the global threat landscape and emerging threats
aeCERT will be responsible for researching potential and emerging threats and providing relevant information to eligible constituents
R&A6
Provide early warning notification of threats, vulnerabilities and exploits
aeCERT vulnerability handling will receive information and reports about hardware and software vulnerabilities to enable the provision of early warning and notification of threats, vulnerabilities and exploits to eligible constituents.
R&A7
Issue countermeasure and response advice to mitigate high priority threats
aeCERT will prioritize potential incidents with respect to severity and issue countermeasures and response advice to mitigate high priority threats.
R&A8
Provide an enhanced level of service to constituents who contribute to the aeCERT collection systems
aeCERT will provide an enhanced level of service to constituents who volunteer to be part of the aeCERT sensor network.
R&A9
Produce quarterly and annual reports
aeCERT will provide quarterly and annual reports on threats, incidents, trends and other security related topics pertaining to the UAE.
R&A10
Provide supporting forensic services for incident analysis to selected constituents
aeCERT will provide forensic services to support selected constituents. This service will include information and evidence gathering to internationally acceptable evidentiary standards.
Security Quality
SQ1
Vulnerability Assessment
The aeCERT Vulnerability Assessment will provide information and reports about the Operating Systems and software running on the constituents’ devices in order to discover potential vulnerabilities and threats
SQ2
Penetration Testing
The aeCERT Penetration Testing will attempt to simulate attacks against vulnerable operation systems or software running on a constituent’s device. It is intended to determine the possibility a successful attack and the impact of the exploitation on the system
.jpg)