| Name: | Description: | Size: | Format: | |
|---|---|---|---|---|
| 6.48 MB | Adobe PDF |
Authors
Advisor(s)
Abstract(s)
O objetivo deste estudo consiste, em selecionar a estrutura, processos e responsabilidades a serem criados nas Forças Armadas (FFAA) portuguesas, na escalada de resposta a ciberincidentes.
O procedimento utilizado consistiu, exclusivamente, na análise documental clássica para compreensão, comparação e interpretação do framework do National Institute of Standards and Technology (NIST) e a nova Lei Orgânica das FFAA, identificando possíveis lacunas na organização atual das FFAA, numa escalada de resposta a ciberincidentes.
A nova Lei veio conferir ao Estado Maior General das FFAA (EMGFA) uma maior autoridade técnica e funcional sobre os Ramos, na capacidade de ciberdefesa.
À capacidade Computer Incident Response Team (CIRT) do EMGFA devem ser acrescentadas algumas responsabilidades e a criação duma Equipa Modular Destacável. As CIRT dos Ramos, devem passar a ter uma estrutura central e uma maior capacidade e autonomia no tratamento de incidentes, através duma estrutura, articulação e responsabilidades mais idênticas entre si e similares ao CIRT do EMGFA; e o mais próximo do poder de decisão.
Ao nível do EMGFA, deve ser criado um Grupo de Coordenação e Apoio à Decisão, gerindo as entidades envolvidas, para assegurar uma resposta estratégica eficaz das FFAA; e um Plano de Reação, Mitigação e Recuperação de Incidentes.
The objective of this study is to select the structure, process and responsibilities to be created in the Portuguese Armed Forces (FFAA), in the escalation of response to cyber incidents. The procedure used consisted exclusively of classic document analysis for the understanding, comparison and interpretation of the National Institute of Standards and Technology (NIST) framework and the new Organic Law of the FFAA, identifying possible gaps in the current organization of the FFAA, in an escalation of response to cyber incidents. The new Law of the General Staff of the Armed Forces (EMGFA) has given greater technical and functional authority over the branches in the cyber defense capability. The EMGFA's Computer Incident Response Team (CIRT) capability should be complemented with some responsibilities and the creation of a Deployable Modular Team. The CIRTs of the branches should have a central structure and greater capacity and autonomy in incident handling, through a structure, articulation and responsibilities that are more identical to each other and similar to the EMGFA's CIRT. At the EMGFA level, a Coordination and Decision Support Group must be created, managing all the entities involved, to ensure an effective strategic response from the Armed Forces; and an Incident Reaction, Mitigation and Recovery Plan.
The objective of this study is to select the structure, process and responsibilities to be created in the Portuguese Armed Forces (FFAA), in the escalation of response to cyber incidents. The procedure used consisted exclusively of classic document analysis for the understanding, comparison and interpretation of the National Institute of Standards and Technology (NIST) framework and the new Organic Law of the FFAA, identifying possible gaps in the current organization of the FFAA, in an escalation of response to cyber incidents. The new Law of the General Staff of the Armed Forces (EMGFA) has given greater technical and functional authority over the branches in the cyber defense capability. The EMGFA's Computer Incident Response Team (CIRT) capability should be complemented with some responsibilities and the creation of a Deployable Modular Team. The CIRTs of the branches should have a central structure and greater capacity and autonomy in incident handling, through a structure, articulation and responsibilities that are more identical to each other and similar to the EMGFA's CIRT. At the EMGFA level, a Coordination and Decision Support Group must be created, managing all the entities involved, to ensure an effective strategic response from the Armed Forces; and an Incident Reaction, Mitigation and Recovery Plan.
Description
Keywords
Ciberincidentes Escalar da resposta Forças Armadas Portuguesas Equipas de resposta Responsabilidades Cyber incidents Escalation of response Portuguese Armed Forces Response teams Responsibilities