Cyber ​​security incident response drill

Giving flowers to teams participating in combat exercises

The drill targeted 2 important information systems with the participation of IT and information security specialists from agencies and units in the province; members of the Network Security Incident Response Team.

Speaking at the practical exercise, Mr. Nguyen Thanh Binh - Permanent Vice Chairman of the Provincial People's Committee, Head of the Information Exercise Organizing Committee, Thua Thien Hue is one of the localities that has effectively applied and developed IT in all aspects of serving digital transformation, promoting digital economy , digital society... However, the increasingly complicated situation of network information security is posing many risks and challenges, requiring special attention to ensuring information security in the digital transformation process.

Mr. Nguyen Thanh Binh emphasized: The province, departments and branches need to make more efforts to do a good job of ensuring information security and safety, meeting standards. There are instructions and systems in agencies and branches to organize implementation. There are clear rules to implement according to standards. Focus on and pay attention to information and propaganda work. At the same time, continue to have information exchanges with central organizations and businesses to have solutions to ensure information security.

This year's live exercise will be conducted on the operating system at the Provincial Data Center. The Incident Response Team will use existing personnel, technology and processes to detect and prevent activities carried out by the Attack Team targeting the real system that the Incident Response Team is responsible for protecting.

At the combat exercise

Participating in the drill were 2 attack teams from the Department of Cyber ​​Security and High-Tech Crime Prevention - Provincial Police and Viettel Cyber ​​Security Company; and 4 defense teams from the Provincial Smart City Monitoring and Operation Center; Department of Cyber ​​Security and High-Tech Crime Prevention - Provincial Police; Viettel Cyber ​​Security Company and Bkav Cyber ​​Security Company.

According to the Organizing Committee, “not knowing in advance the scenario, the attack tools, as well as the techniques that hackers often use to attack the target” is the spirit of the exercise. This will help the specialized forces to evaluate and review the process, plan, and response plan when an incident occurs, set warning thresholds, and monitor regularly. At the same time, there is coordination and clear assignment of handling responsibilities among units and members of the provincial IT security incident response team.

The target of this attack is to attack the Electronic Information System and the Online Public Service System. These are 2 Systems that have been built and approved for level 3 proposals; at the same time, corresponding information security measures have been deployed.

This activity contributes to equipping the basic contents of Directive No. 60/CT-TTTT dated September 16, 2021 of the Ministry of Information and Communications on organizing and implementing practical exercises to ensure network information security, equipping attack and defense procedures, tools for attack and defense, during the process of directly participating in practical exercises of the DVC system and the Electronic Information Page.