Multi-stakeholder Incident Response/USIRP
The Unified Security Incident Response Plan (USIRP) is one of the primary means by which ICASI fulfills its mission of enhancing the global security landscape. Comprising a trusted forum and supporting processes, procedures, and tools, the USIRP enables Security Incident Response Teams (SIRTs) from ICASI member companies to collaborate quickly and effectively to resolve complex, multi-stakeholder Internet security issues. These issues include: vulnerabilities in commonly-used software; incidents – urgent or emergent – that affect multiple ICASI member organizations; and ongoing or long-term problems that warrant a strategic response.
The USIRP works by harmonizing ICASI member companies’ internal security incident response procedures and personnel by providing a common, formal framework with which these organizations can: trigger a USIRP event; share critical information about it; and work together effectively on a coordinated response. ICASI also has established relationships with other industry organizations to help broaden its own reach in dealing effectively with active or future security issues.
The US National Security Telecommunications Advisory Committee, in its Report to the President on Information and Communications Technology Mobilization, has cited the ICASI USIRP as a model process for multi-stakeholder incident response.