The plan is developed to ensure information security for important information systems in the province; ensure proactive and flexible adaptation and minimize risks and threats of information insecurity in the network system; effectively implement response and solution when network information insecurity incidents occur...
According to the plan, Khanh Hoa Provincial Police will carry out tasks when no incidents have occurred.
Specialized units will organize propaganda and dissemination of legal documents, professional guidance documents on network information security; deploy training programs, foster skills in assessing and responding to emergency incidents; prevent incidents, monitor early detection of incidents, and deploy conditions for ready response.
For cases where incidents occur, the authorities will follow the Rescue Procedure and handle emergency incidents against cyber attacks.
These are the steps to report network information security incidents; receive, detect, classify and initially handle network information security incidents; the information system operator must perform when detecting or receiving incident notification for the information system under their management.
For each information system and application program, it is necessary to build specific situations and incident scenarios and propose corresponding response and incident response plans.
The formulation of incident response and incident response plans should ensure the contents such as the implementation process and the initial priority steps when the information system encountered a problem, with different types of incidents; Methods and methods to quickly and promptly identify the causes and origin of incidents to apply the plan to respond, rescue and overcome incidents to ensure appropriate and effective factors; incidents due to the fault of the administrator, operating the system ...
Khanh Hoa Provincial Police - The Standing Agency of the Cyber Security Subcommittee will be the unit, specializing in responding to network information security incidents.
This agency is responsible for researching and updating skills, methods, and technical measures on management, monitoring, response, and handling of network information security incidents; guiding management units, management, and operation of important information systems to properly and fully implement the contents related to ensuring information security, promptly handling and minimizing risks and damage when incidents occur.
