Architect of cyber security according to the law on cyber security 181/2014 Coll. ensures the design and implementation of security measures within CII. In practice, the architect is responsible for designing secure architecture (from infrastructure to application level), including its subsequent implementation.
There can be more architects in the organisation, each with their own speciality, such as network infrastructure, operating systems, security components, etc.
- He is responsible for promoting security within the architecture of an organization that is part of CII
- It creates a conceptual plan, based on the instructions of the Cyber Security Committee
- He is responsible for managing the life cycle process within the KII architecture
- Manages the use of security management resources within CII
- It creates, revises lists of countermeasures to the findings of risk analyzes, security audits
- Based on the manager's instructions, KB specifies security measures
- Based on the instructions of the manager, KB implements security-technical countermeasures
- Involved in the risk management process
- Involved in investigation of security incidents
- It regularly reviews the effectiveness of security measures
- Provides support for communication with GovCERT / CSIRT
- It provides documents for drawing the funds necessary for the implementation of security measures
- Reports the status of security measures to KB Manager
No comments:
Post a Comment