Structure

  

 State Government Incident Response and Forensic Team (SgIRF)

• To formulate / review procedures in responding to incidents
• To report ICT security Incidents
• To respond to report of ICT Security incidents
• To identify and inform relevant personnel on incidents based on need to know basis
• To collect and analyse forensic evidence
• To write reports on incidents and propose the next course of action
• Lodge police report for legal action

• Patch systems and fix vulnerability

 State Government ICT Security Audit and Assessment Team (SgSAT)

• To formulate and review ICT security auditing and assessment procedures
• To take pre-emptive actions to remove possible source of vulnerabilities based on Security Advisories received

• To plan for security Enhancement

• To register all ICT equipment / facilities / services
• To periodically audit and assess the ICT security and update the ICT security baseline

 State Government ICT Security R&D Team (SgRnD)

• To evaluate security tools and propose recommendation

• To study Systems / Network / Application Security improvement & propose recommendation

• To study Systems / Network / Application Security improvement & propose recommendation

• To create commercial ICT security products
• To report new vulnerabilities found to vendors

 State Government ICT Security Training, Education and Acculturation Team (SgHRD)

• To formulate and review training curriculum on ICT security

• To plan, conduct and review ICT security awareness  activities

• To conduct regular ICT Security Training

 State Government ICT Security Monitoring Team (SgSMT)

• To formulate and review ICT Security Monitoring procedures

• To monitor and ensure Security Policy Compliance

• To monitor and create Security Advisory

• To report suspicious activities

• To monitor daily security logs

 Secretariat

• Jabatan Perkhidmatan Komputer Negeri,
  Tingkat 1, Blok A, Wisma Kewangan,
  88593 Kota Kinabalu, Sabah, Malaysia.