Today, with the growth and development of information technology, the infrastructure and information systems of defense sectors are also built on the basis of information technology; In such a way that due to negligence and failure to take care of the network, the possibility of loss of information and assets will be imagined; In order to respond to incidents in the shortest possible time, it is necessary to set up a Ict response team in defense centers; So that the network can be controlled in a reliable platform and unauthorized attacks and intrusions can be detected and the response speed can be increased in the shortest possible time with optimal communication between components; On the other hand, maintaining hierarchy and agility and using real-time systems is one of the distinctions of this team compared to non-defensive teams; In this research, by relying on the library method, the required data was extracted, and with the opinion of experts in the field of cyber defense, questions were prepared and distributed among 65 experts of the target community; The results of this analysis using spss software were presented as research results and a coordinating model was proposed for the command center and a hybrid model (distributed and centralized) was proposed for the lower layers; Also, the manner of interactions, services, the amount of authority, the method of reporting, and the organizational chart were presented
رشتی، سید محمدرضا. (1388). راهنمای ایجاد یک تیم پاسخگویی به رخدادهای امنیتی رایانهای CSIRT. تهران: رویش جوانههای فردا.
سازمان پدافند غیرعامل کشور. (1393). «بررسی و ارزیابی ریسکها و مخاطرات سایبری».
سند نظام ملی پیشگیری و مقابله با رخدادهای فضای مجازی.
صیاد، محمدکاظم و امینی، آرمین و طاهری، ابوالقاسم. (1399). «تهدیدات سایبری و اقدامات امنیتی در فضای مجازی» فصلنامه علمی امنیت ملی، سال دهم، شماره سی و هشتم.
طیرانی، احسان. (1395). مدیریت رخدادهای امنیت رایانهای و تشکیل تیمهای CERT سازمانی، آپای مشهد.
علیدوستی، میترا. (1392). «بررسی الگوریتمها و روشهای تست نفوذ و ارزیابی ابزارهای موجود»، پایاننامه کارشناسی ارشد مهندسی رایانه گرایش معماری سیستمهای رایانه، دانشگاه علم و صنعت.
Alberts, Chris. Dorofee, Audrey. Killcrece, Georgia. Ruefle, Robin. Zajicek, Mark. (2016). "Defining Incident Management Processes for CSIRTs: A Work in Progress". U.S: Software Engineering Institute, Carnegie Mellon University.
Brownlee, N. (2018). "Expectations for Computer Security Incident Respons". U.S: Software Engineering Institute, Carnegie Mellon University.
Blueprint for a Secure Cyber Future: )2017(The Cybersecurity Strategy forthe Homeland Security Enterprise NIST Incident Response, 2021, The step bysetp guide for incident response reporting.
DOD Faces Challenges In Its Cyber Activities, July (2017)
John Franco Dept, (2017) Cyber Defense Overview Electrical Engineering and Computing Science.
Killcrece, Georgia. Kossakowski, Klaus-Peter. Ruefle, Robin. Zajicek, Mark. (2016) "State of the Practice of Computer Security Incident Response Teams (CSIRTs)". US: Carnegie Mellon University.
Kossakowski, Klaus-Peter, Robin Ruefle,Mark Zajicek". (2017).Organizational Models for Computer Security Incident ResponseTeams (CSIRTs)". US: Software Engineering Institute, Carnegie Mellon University.
Martijn van der heide (2017), Management strategies for implementing forensic security measures
Penedo, David. (2016). "Technical Infrastructure of a CSIRT". Cote d'Azur: Internet Surveillance and Protection, ICISP." US: Software Engineering Institute, Carnegie Mellon University.
Scarfone, Karen. Grance, Tim and Masone, Kell. (March 2018). "Computer Security Incident Handling Guide". U.S: Department of Commerce, National Institute of Standards and Technology.
KARIMI GHOHROODI, M. R., keshavarz, R., movahedi sefat, M. R., & salehe esfahani, M. (2023). designating a hybrid model for IT emergency response team of defense sectors. National Security, 13(48), 87-112.
MLA
MOHAMMAD REZA KARIMI GHOHROODI; reza keshavarz; mohammad reza movahedi sefat; mahmoud salehe esfahani. "designating a hybrid model for IT emergency response team of defense sectors", National Security, 13, 48, 2023, 87-112.
HARVARD
KARIMI GHOHROODI, M. R., keshavarz, R., movahedi sefat, M. R., salehe esfahani, M. (2023). 'designating a hybrid model for IT emergency response team of defense sectors', National Security, 13(48), pp. 87-112.
VANCOUVER
KARIMI GHOHROODI, M. R., keshavarz, R., movahedi sefat, M. R., salehe esfahani, M. designating a hybrid model for IT emergency response team of defense sectors. National Security, 2023; 13(48): 87-112.
)
