State Government Incident Response and Forensic Team (SgIRF)
To formulate / review procedures in responding to incidents.
To report ICT security Incidents.
To respond to report of ICT Security incidents.
To identify and inform relevant personnel on incidents based on need to know basis.
To collect and analyse forensic evidence.
To write reports on incidents and propose the next course of action.
Lodge police report for legal action.
Patch systems and fix vulnerability.
State Government ICT Security Audit and Assessment Team (SgSAT)
To formulate and review ICT security auditing and assessment procedures.
To take pre-emptive actions to remove possible source of vulnerabilities based on Security Advisories received.
To plan for security Enhancement.
To register all ICT equipment / facilities / services.
To periodically audit and assess the ICT security and update the ICT security baseline
State Government ICT Security R&D Team (SgRnD)
To evaluate security tools and propose recommendation.
To study Systems / Network / Application Security improvement & propose recommendation.
To create commercial ICT security products.
To report new vulnerabilities found to vendors.
State Government ICT Security Training, Education and Acculturation Team (SgHRD)
To formulate and review training curriculum on ICT security.
To plan, conduct and review ICT security awareness activities.
To conduct regular ICT Security Training.
State Government ICT Security Monitoring Team (SgSMT)
To formulate and review ICT Security Monitoring procedures.
To monitor and ensure Security Policy Compliance.
To monitor and create Security Advisory.
To report suspicious activities.
To monitor daily security logs.
Secretariat
State Computer Service Department
6th Floor, Block A,
Pusat Pentadbiran Negeri Sabah
Jalan UMS, Teluk Likas
88400 Kota Kinabalu, Sabah, Malaysia.
