RFC 2350 – Cyber Security Incident Response Team (CSIRT) Collega
1. Cyber Security Incident Response Team (CSIRT) COLLEGA-CSIRT
Cyber Security Incident Response Team (CSIRT), COLLEGA-CSIRT is the short form for PT Collega Inti Pratama’s Cyber Security Incident Response Team (CSIRT), as designated by the President Director in the Board of Directors Decree No. SK/DIR/03-24/004 concerning the Security Incident Response Policy. COLLEGA-CSIRT was established to safeguard the company’s business continuity as an information technology service provider from various cyber threats and attacks.
Basic information about COLLEGA-CSIRT is available in the Indonesian version of the RFC 2350 document at the following link:
2. COLLEGA-CSIRT Vision
Adhering to the principles of information security, encompassing:
- Confidentiality – Safeguarding the confidentiality of corporate data from unauthorized access by those lacking requisite authorization or legitimate interest.
- Integrity – Ensuring the preservation of data integrity against any unauthorized alterations.
- Availability – Guaranteeing the accessibility of data upon demand by the authorized data owner.
3. COLLEGA-CSIRT Mission
a. Complying with all applicable laws and regulations.
b. Establishing policies and procedures related to information security.
c. Implementing risk management practices within organizational activities.
d. Conducting ongoing awareness campaigns on information security.
e. Adopting best practices in information security.
f. Continuously enhancing the competencies of human resources in information security.
g. Conducting periodic independent reviews and assessments of all systems.
h. Ensuring management commitment to information security.
4. Constituent
The constituents of COLLEGA-CSIRT include all units across every directorate within the company, as well as data owners and clients.
5. COLLEGA-CSIRT Services
The primary services provided by COLLEGA-CSIRT are as follows:
a. Cybersecurity alert dissemination
Cybersecurity alerts are disseminated to all Units across all Directorates within the Company and to Data Owners/Clients, taking into account their respective responsibilities.
b. Cybersecurity incident response
COLLEGA-CSIRT provides cybersecurity incident response services, including analysis, technical recommendations, and on-site assistance for the mitigation and recovery of cybersecurity incidents.
c. Cybersecurity incident reporting
This cybersecurity incident reporting service provides coordination for the mitigation and recovery of cybersecurity incidents.
6. Incident Types and Support Levels
COLLEGA-CSIRT provides incident response services for the following types of cyber incidents:
a Web defacement
b. DDoS attacks
c. Malware
d. Phishing
The level of support provided by COLLEGA-CSIRT to its constituents may vary depending on the type and impact of the incident.
COLLEGA-CSIRT Organizational Profile
Collega Cyber Security Incident Response Team (CSIRT) is structured in accordance with the provisions outlined in Executive Decree No. SK/DIR/03-24/004 on Security Incident Response Policy. The Head of the Internal Audit & Risk Management Division serves as the Chair of COLLEGA-CSIRT.