Jump to content

Forum of Incident Response and Security Teams

From ICANNWiki


Type: International Organization
Industry: Internet Security
Founded: 1990
Headquarters: Morrisville, North Carolina
Country: USA
Website: www.first.org
Key People
Chris Gibson, President

The Forum of Incident Response and Security Teams is a worldwide organization of trusted computer response teams dedicated FIRST in preventing cyber security attacks. The members of FIRST work together in exchanging information regarding new vulnerabilities and in handling wide range computer security attack particularly on the servers of the Domain Name System (DNS).[1]

History

FIRST was established in 1990 to resolve the underlying problem of difficulty in communications between incident response teams around the world because of the differences in languages, time zones as well as international standards, which became evident during the wank worm attack in 1989. Since the establishment of FIRST, the organization progressed and its membership continued to increase.[2]

Mission & Vision

The organization aims to respond to security incidents effectively by providing access to best practices, tools, and trusted communication with its member teams. Its members aims to accomplish the following:[3]

  • Develop and share technical information, tools, methodologies, processes and best practices
  • Encourage and promote the development of quality security products, policies & services
  • Develop and implement best computer security practices
  • Promote the creation and expansion of Incident Response teams and membership worldwide
  • Use and combine the knowledge, skills and experience of its members to promote a more secure global electronic environment

Board of Directors

  • Steve Adegbite, Chairman (Lockheed Martin)
  • Chris Gibson, President (Citi)
  • Peter Allor, CFO (IBM)
  • Ken van Wyk (KRvW Associates, LLC)
  • Jordi Aguila (e-LC CSIRT, ES)
  • Reneaué Railton (Cisco)
  • Robert Schischka (CERT.at)
  • Maarten Van Horenbeeck (Microsoft Corporation)
  • Margrete Raaum (UiO-CERT)
  • Suguru Yamaguchi (JPCERT/CC)

ICANN & FIRST

FIRST and ICANN had been working collaboratively to ensure the operational stability, reliability. security and global interoperability of the internet and to determine the occurrences of DNS abuses as well as the different internet security risks. ICANN's Computer Incident Response Team (ICANN CIRT) was created in 2009 and it is a full member of FIRST.[4] On March 5-8, 2010, during the ICANN 37 Meeting in Nairobi Kenya, FIRST and ICANN partnered in conducting a four day workshop on cyber-security for the African Incident Response Teams. The two organizations provided case studies in network security response, hands on training on DNS security, network protection and handling. According to ICANN's Director for Global Security Programs Yurie Ito, "We had participation from across Africa, and as a result we now see a number of countries interested in setting up their own national-level cyber security incident response teams. Through our work with FIRST, we hope to set the stage for a better level of Internet security throughout the African continent."[5]

References