CDC Framework Survey

Introduction

Along with the development of digitalization, active defence is becoming a top prioritized cybersecurity strategy.

ITU-T Recommendation X.1060: Framework for the creation and operation of a Cyber Defence Centre (CDC) was newly developed by ITU-T SG17 in 2021.

This Recommendation provides a framework to build and manage an entity within an organization that offers security services to manage the cybersecurity risks of its business activities, i.e., a CDC, and to evaluate its effectiveness. It specifies a service portfolio with 54 services in nine categories that a CDC should have in order to implement cybersecurity measures.

Some African delegates (e.g. Kenya, Ghana, Senegal) find ITU-T X.1060 very useful to facilitate cybersecurity capacity building.
Objectives of the survey

This survey aims to understand the status for cybersecurity measures related to CDC, including government and private sector Security Operations Centre (SOC), Computer Emergency Response Team (CERT), Computer Security Incident Response Team (CSIRT) etc., in African countries who may wish to adopt the X.1060 framework. (This survey may extend to other regions in the future.)

Participants in this survey will become aware of ITU-T X.1060 and use it to assess and plan CDC services to enhance cybersecurity of their organizations

The survey also seeks to disseminate information on security standards and standardization, and to encourage the involvement of more African countries in standardization activities pursuant to provisions of WTSA Resolution 54 on Creation of, and assistance to, regional groups, Resolution 44 on Bridging the Standardization Gap between developing and developed countries, and Resolution 58 on Encouraging the creation of national computer incident response teams, particularly for developing countries.
Target Responder

This survey will be circulated to ITU African Member States and Sector Members and encourage these ITU Members to share it to non ITU Members in their circles as the first step and ITU-T SG17 will receive the survey results.

This survey should be completed by the designated Chief Security Officer (CSO) or Chief Information Security Officer (CISO) of current SOC, CERT, CSIRT etc. and potential future CDC.

This survey will be dispatched via ITU-T Circular letter to designated focal point (DFP) of ITU Member States in Africa, as well as available online. Please forward the online survey to the above appropriate targeted responders in government, public sector, and private sector.

Survey period

TSB Circular arrival date (Nov 2021) - End of March 2022
Contact

ITU-T TSB SG17 Secretariat at: tsbsg17@itu.int
 
8% of survey complete.

T