Accessibility

Accessibility

Text size

In all popular web-pages it is possible to increase and decrease font size by holding Ctrl-key (in OS X Cmd-key) and pressing “+” or “-“-key. It is very convenient to use mouse: holding Ctrl and scrolling mouse central scroll button. It is possible to go back to normal size pressing Ctrl and 0-keys.

If you think you see this text unintentionally

It might happen, that some elements of our webpage or platform did not arrive to you as planned, they are served from some buffer (cache). To resolve it, please try to do “hard refresh”, hold down Ctrl (Control) + Shift and click R.
For more information about hard refresh in different systems and browsers, please choose some of the results of Google Search: browser hard refresh.

Still no help with actual content?

Second option will be to try to clean up the cache on your own browser. Please choose some of the appropriate results of Google Search: browser clear cache.
After that, you might refresh your query again or order new login token to be sent to your email once again.

Still no help?

Sorry for inconvenience. Please take a snapshot of your browser configuration by visiting webpage www.whatismybrowser.com and send the unique link of it to EU CyberNet Headquarters by email .

Thank you!

Search

Building a CSIRT: A Practical Blueprint for Success

The 5th LAC4 members-only seminar, led by EU CyberNet Experts Carlos Leonardo from the Dominican Republic and Roberto Lemaitre Picado from Costa Rica focused on building a computer security incident response team (CSIRT) and offering participants practical and structured guidelines to succeed.

Focusing on the practical aspects of CSIRT development, participants explored core functions and types of CSIRTs; learned to identify key organizational, technical and human components; and gained insights from real-life experiences of CSIRT implementation across the LAC region.

Most important take-aways from the seminar for successful building of CSIRT:

  • A CSIRT should include both an incident response team and an incident management team. The effective operation of both is crucial to maintaining trust and ensuring a coordinated response.
  • A thorough evaluation and proper preparation are essential for the effective operation of a CSIRT. It’s crucial to define why we need a CSIRT, what its mission will be, whom it will serve, and most importantly, who will support and fund it. Clear and sustainable funding is fundamental to ensuring its long-term success.
  • It’s better to start by offering a few but effective services, and gradually expand over time. To achieve this, having a clear roadmap and a service catalog is essential.
  • The CSIRT’s network infrastructure should be segregated from general organizational networks to prevent potential incidents from spreading and compromising other systems.
  • Cybersecurity measures often sound good from a legal standpoint, but are not realistic from a technological perspective, thus the legal area should be aligned with the technological one.
  • CSIRT personnel require not only strong technical skills but also interpersonal abilities: hiring should be based on an 80-20 balance, with 20% focused on technical capabilities and 80% on soft skills.
  • Depending on the CSIRT’s mission and objectives, it should have different dimensions and structures tailored to its specific needs.
  • The CSIRT must maintain clear communication and have an updated contact list and connections, fostering a trusted ecosystem to build a robust network that promotes cybersecurity.
  • One of the main objectives of a CSIRT is to minimize false negatives and maximize true positives—ensuring that real threats are not missed, while ignoring noise that doesn’t pose any real risk.

LAC4 remains committed to supporting its members in building and strengthening capacity for their CSIRT development and operations. Seminar was attended by 132 stakeholders and policymakers from LAC4 Participant Nations. Seminar was designed for cybersecurity stakeholders and policymakers from LAC4 member countries of Antigua and Barbuda, Colombia, the Dominican Republic, Ecuador, El Salvador, Guatemala, Honduras, Panama and Uruguay and members of RedCLARA.

Next LAC4 members-only seminar will take place in August 2025.

Keep reading similar articles
Members-only Seminar: a Legal Architecture and a Common Framework

The seminar focused on the development of a coherent legal architecture and a common cybersecurity framework in Latin America, beginning with an introduction to the NIS 2 Directive adopted by the European Union in 2022 and the cybersecurity situation in Czech Republic. The session highlighted that, although many countries in the region are aligning with international standards, adapting these frameworks to local institutional, technical and economic realities remains a significant challenge.

LAC4 is Supporting the Bahamas’ Cyber Resilience with National Cybersecurity Risk Assessment

LAC4 in cooperation with EU CyberNet is supporting the government of the Bahamas with its national cybersecurity risk assessment. Conducted with the capacity of EU CyberNet Expert Pool, the assessment supports implementation of the Bahamas’ national cybersecurity strategy in establishing a robust national cybersecurity posture.
At HackConRD 2026: Artificial Intelligence in Cybersecurity

EU CyberNet Expert Carlos Polop delivered a session on using artificial intelligence in cybersecurity and pentesting at HackConRD 2026 conference on 28 March 2026 in Santo Domingo, the Dominican Republic.

Save the Date: CyberWeek@LAC4 2026 Takes Place November 17-20

The 5th CyberWeek@LAC4 and 0ct0b3rf35t will take place in Santo Domino, the Dominican Republic from 17 to 20 November 2026.
Following Up the In-person Workshop for SME-s Held in March 2025 in Guatemala

LAC4 organised an online follow-up training on 26 March 2026 to SME-s that participated in in-person workshop in March 2025 in Guatemala. Training focused on evaluating participant’s cyber resilience one year after the training and offer additional knowledge for strengthening cyber resilience.

Her CyberTracks Programme Launched to Empower Women in Cybersecurity

The 4th edition of the CyberTracks programme, co-organised by LAC4 and partners is open for applications to bring together more women in cybersecurity across globe for an intensive training journey to equip them with skills and knowledge for success in cybersecurity. Deadline to apply is 19 April 2026.

This site is managed and run by the Estonian Information System Authority

EU CyberNet® 2020-2026

Privacy Policy Contact