Best Practices for National Cyber Security: Building a National Computer Security Incident Management Capability, Version 2.0

Citation
Software Engineering Institute, Best Practices for National Cyber Security: Building a National Computer Security Incident Management Capability, Version 2.0 (Apr. 2011) (full-text).

Overview
The handbook provides principles and strategic goals to help nations develop their own, robust national management capacity. It attempts to alleviate the challenge of developing an incident management capability with limited published guidance. Many nations attempting to develop National CSIRTs have started by attempting to copy existing CSIRT organizations. This approach can be problematic because not every nation has the same needs and resources. The operating principles and strategic goals discussed in this document enhance the ability of governments to manage cyber security risks and focus their efforts.