SOC Experts Community - Beta
0 like 0 dislike
in Security Concepts by (2.2k points)

2 Answers

0 like 0 dislike
by (5.9k points)

The work of CSIRT are

  • Additional in depth review of all IT security plans and procedures (additional pairs of eyes never hurts here).
  • Central communication point when incidents occur.
  • Can promote IT security awareness and can manage audits and drills.
  • Assist in evaluation of new technologies and techniques prevention and containment.
  • Provide risk management analysis of IT implementations and how it affects the organization.
  • Investigating new security vulnerabilities and threats and the most adequate response.
  • Perform the action of the emergency contact group for the organization.
  • Perform the role of IT emergency system management for all remotely stored system critical information such as: passwords, IP lists, network configurations, firewall rule sets, escalation procedures, etc.
0 like 0 dislike
by (5k points)


A Computer Security Incident Response Team (CSIRT, pronounced "see-sirt") is an organization that receives reports of security breaches, conducts analyses of the reports and responds to the senders.

SOC Experts - No. 1 Job Oriented Cybersecurity Training Program

View our Courses