Tasks & Services

1. Tasks
Ministry of Communication and Information Technology had appointed Indonesia Security Incident Response Team on Internet and Infrastructure (ID-SIRTII) to help the monitoring of telecommunication network security based on internet protocol.
The primary tasks of ID-SIRTII are socializing with related parties for early monitoring, early detection, early warning of threats to the telecommunications network from inside or outside the country especially in securing network utilization, creating, running, developing and collecting databases. The main tasks of ID-SIRTII are as describe below:
  • Internet traffic monitoring for incident handling purposes.
  • Managing log files to support law enforcement.
  • Educating public for security awareness.
  • Assisting institutions in managing security.
  • Providing training to constituency and stakeholders.
  • Running laboratory for simulation practices.
  • Establishing external and international collaborations.
2. Services

1. Incident Response
ID-SIRTII will assist IT-security team in handling the technical and organizational aspects of incidents. In particular, it will provide assistance or advice with respect to the following aspects of incident management:
· Incident Triage
  • Determining whether an incident is authentic.
  • Assessing and prioritizing the incident.
· Incident Coordination
  • Determining the involved organizations.
  • Contacting the involved organizations to investigate the incident and take the appropriate steps.
  • Facilitating contact to other parties which can help resolve the incident.
  • Sending reports to other CERTs
· Incident Resolution
  • Advising local security teams on appropriate actions.
  • Following up on the progress of the concerned local security teams.
  • Asking for reports.
  • Reporting back.
ID-SIRTII will also collect statistics about incidents within its constituency.
2. Proactive Activities
  • Socializing to related parties to conduct security activities of the telecommunications network application based on internet protocol.
  • Monitoring, detection and early warning of threats and disturbance of the telecommunications network based on internet protocol in Indonesia.
  • Developing and / or providing, operating, and maintaining the database system of monitoring and conducting security activities of the telecommunications network application based on internet protocol at least for monitoring, early detection and early warning of threats and disturbance to the telecommunications network application based on internet protocol, keeping records of transactions (log files) for supporting the law enforcement process.
  • Performing the functions of information services to the threats and security disturbance of the telecommunications network application based on internet protocol.
  • Carrying out research and development activities, providing simulation lab and training activities of the telecommunications network application security based on internet protocol.
  • Providing consultancy services and technical assistance to strategic institutions/agencies
  • As a central coordination (Coordination Center / CC) and liaison (Single Point of Contact) with related agencies / institutions both in domestic and overseas.