Established by the National Telecom Regulatory Authority (NTRA) in April 2009, the Egyptian Computer Emergency Readiness Team (EG-CERT) is staffed by a team of 16 professionals and provides 24-hour support to protect critical information infrastructure.
Since 2012, EG-CERT has been supporting different entities across the ICT, banking and government sectors, helping them tackle cybersecurity threats, including denial of services attacks.
EG-CERT consists of five main departments: Cyber Incident Handling and Business Continuity, Cyber-Attack Monitoring and Early Warning, Penetration Testing and Malware Analysis, Critical Information Infrastructure Protection and Emergency Plans, and Cyber Awareness and Business Development.
EG-CERT seeks to provide an early warning system against malware and cyber-attacks that spread widely against the Egyptian critical information infrastructure. Currently, EG-CERT is developing its laboratories in the four main operational departments. Additional laboratories for cybersecurity in mobile phones and cybersecurity in industrial control systems are being planned.
EG-CERT seeks also to develop an appropriate legislative framework for cybersecurity, with the participation of the private sector and civil society, and is guided by relevant international expertise, experience, and initiatives. It also aims to establish a national cybersecurity system and computer emergency response teams; and develop the infrastructure necessary to ensure confidence in electronic transactions and protect digital identity, such as public key infrastructure and credit bureaus, with the participation of the private sector. This is in addition to gathering and analyzing information on security incidents, coordinating and mediating between the interested parties in solving security incidents and cooperating with other international CERTs.
The Critical Information Infrastructure Protection and Emergency Plans Department is also concerned with protecting information in the country’s critical sectors. To achieve this objective, the Department studies the needs of certain sectors and how far the cybersecurity standards and procedures are implemented. These studies lead to the development of protection strategies and implementation frameworks of cybersecurity standards by working closely with the partners.
The Cyber Awareness Department is concerned with raising and enhancing the culture and awareness of cybersecurity and information security and learning more about Internet risks, threats, and cyber-attacks. This Department is aimed at raising people’s awareness of the ministries and government entities of critical infrastructure, business, banking and investment sectors, and all social groups. Awareness campaigns are carried out through holding awareness and guidance sessions, training courses and workshops, periodic bulletins, leaflets, awareness videos, and awareness ads, as well as participating in school and university activities and events.
Achievements
- In November 2017, EG-CERT participated in First-ITU Regional Symposium, ALERT Cyber Drill for Arab and African Regions
- In June 2017, Egypt ranked 14th world wide in ITU Global Cybersecurity Index (GCI)17 among a number of 165 of ITU Member States and ranked 2nd at the level of both Arab and African regions
- In March 2017, EG-CERT conducted assessment for UG-CERT to obtain “First” membership
- In November 2016, EG-CERT and NTRA hosted the Fifth Regional Cybersecurity Summit and FIRST Regional Symposium for Arab and African Regions
- In 2015, the Egyptian Supreme Cybersecurity Council (ESCC)) were created
- In December 2014, Egypt ranked 27th among 193 countries as reported by the ITU/ABI Global Cybersecurity Index (GCI)
- In December 2013, the new EG-CERT building was opened
- In November 2013, EG-CERT acquired membership in the Organization for Islamic Cooperation – Computer Emergency Response Team (OIC-CERT) Steering Committee
- In October 2013, EG-CERT ranked 3rd in the ITU Global Cybersecurity Index (GCI)
- In May 2013, the first Workshop for Cyber Security Researches was hosted under the auspices of the National Telecom Regulatory Authority (NTRA), at Smart Village to discuss the latest researches and developments in the field of cyber security
- In March 2013, the National Child Online Protection Committee was launched
- In 2012, EG-CERT gained full membership at the Forum of Incident Response and Security Teams (FIRST), the main international forum for CERT teams
- In 2012, EG-CERT provided support to entities across the ICT, banking and government sectors, helping them tackle cybersecurity threats including denial of service attacks
- In 2012, EG-CERT participated in cyber drills organized by the Asia Pacific Computer Emergency Response Team (APCERT), OICCERT, and the International Telecommunication Union and the International Multilateral Partnership against Cyber Threats (ITUIMPACT)
- In 2012, MCIT showcased the Egyptian Cybersecurity Framework at one of the main sessions of the Internet Governance Forum 2012, held in Azerbaijan
- In October 2012, MCIT participated in the Budapest Conference on Cyberspace, held in Hungary
- EG-CERT has in place cooperation agreements with the United States Computer Emergency Readiness Team (US-CERT), the Korea Internet and Security Agency (KISA) in Seoul and CyberSecurity Malaysia, and is member at the Organization of Islamic Cooperation Computer Emergency Response Team (OIC-CERT).
- MCIT also organized special missions to Finland and Estonia, to explore opportunities for cooperation in the area of cybersecurity with their CERTs as well as in the e-signature field
- In support of the government’s efforts to strengthen cooperation with the countries of Africa, EG-CERT ran a cybersecurity training program for a group from Uganda in November 2013, and MCIT welcomed special missions from Kenya and Sudan during the year
- MCIT showcased the Egyptian Cybersecurity Framework at one of the main sessions of the Internet Governance Forum 2012, held in Azerbaijan in November, and participated in the Budapest Conference on Cyberspace, held on 4-5 October 2012 in Hungary
- In June 2012, Egypt participated in the ITU Arab Regional Workshop on Child Online Protection, an ITU Arab Regional Workshop on “Legal Aspects of Child Online Protection in the Arab Region”, hosted in Algeria
- In December 2012, penetration testing service started
- In September 2009, Digital Forensic analysis service started
- In July 2009, 24/7 monitoring and incident response was available
For more info, kindly click here.
