Organizational structure of the Vietnam Cybersecurity Emergency Response Teams/Coordination Center

Organizational structure of the Vietnam Cybersecurity Emergency Response Teams/Coordination Center (Internet image)

Regarding this issue, LawNet would like to answer as follows:

1. Organizational structure of the Vietnam Cybersecurity Emergency Response Teams/Coordination Center

* Leader:

The Center has a Director and Deputy Directors.

The Center Director is responsible before the Director of the Information Security Department and before the law for the results of implementing assigned functions, tasks and powers.

The Deputy Director helps the Director manage and operate the Center's operational areas and is responsible before the Director and the law for assigned tasks.

* Organizing committee:

- Rooms:

+ General Department;

+ Consulting and professional training department;

+ Incident Response Department;

+ Inspection Department;

+ Research and Development Department.

- The subordinate units:

+ Branch in Ho Chi Minh City.

+ Branch in Da Nang city.

The Center's branches have their own seals and accounts for transactions in accordance with the law. The functions, tasks, powers, and organizational structure of the branches are developed by the Center Director and submitted to the Director for decision.

The functions, tasks, powers, and working relationships of the Center's departments and branches are prescribed by the Center Director.

(Article 3 of Decision 1671/QD-BTTTT 2019)

2. Duties and powers of the Vietnam Cybersecurity Emergency Response Teams/Coordination Center

The tasks and powers of the Vietnam Cybersecurity Emergency Response Teams/Coordination Center are specified in Article 2 of Decision 1671/QD-BTTTT of 2019, including:

- Develop and submit to the Director of the Information Security Department for approval the Center's long-term, medium-term, and annual operating plans, and organize implementation after approval.

- Participate in researching, proposing, and developing mechanisms, policies, programs, schemes, projects, and technical instructions on ensuring information security as assigned by the Director.

- Coordinate information security incident response activities nationwide; is the focal point of the Information Security Department to coordinate with agencies and organizations in responding to information security incidents.

- Carry out inspection and evaluation of information security for hardware products, software, information systems, management systems, and the safe operation of network information according to the provisions of law.

- Issue and revoke certificates of conformity to standards and regulations for hardware products, software, information systems, management systems, and the safe operation of network information according to the provisions of law; Carry out assessments of compliance with standards and regulations on network information security to serve the state management activities of the Department of Information Security.

- Guide, organize, and carry out drills, training, coaching, and fostering to improve information security knowledge and skills for agencies, organizations, and businesses; propagate, disseminate, and raise awareness and responsibility for information security; organize events, seminars, and conferences on information security; and issue certificates and certifications on information security and information technology according to the provisions of law.

- Build and train information security incident response forces. Promote the formation and development of response teams and specialized departments for responding to information security incidents across the country. Organize and operate the national network for information security incident response.

- International cooperation with incident response and network information security inspection organizations; participation in implementing mutual recognition agreements on standard conformity certification and regulation conformity certification according to regulations of the Ministry of Information and Communications.

- Manage, maintain, and develop technical systems for incident response, training, drills, network information security audits, and technical systems serving the prevention and control of electronic waste and spam messages.

- Collect, make statistics, report data, and build a database on incident response, information security inspection and prevention, control, and suppression of spam emails and spam messages.

- Participate in developing standards and technical regulations on network information security and information technology.

- Organize the provision of public service services; carry out activities; provide network information security services and other services in accordance with functions and tasks prescribed by law to create additional sources of revenue.
to expand the scope and scale of operations and develop professional activities.

- Carry out research, development, and transfer of technologies, techniques, and solutions for network information security.

- Collect, manage, and use fees, charges, and other legal sources of funding for activities according to the functions, tasks, and powers of the Center in accordance with the provisions of law.

- Implement organizational management, officials, labor, finance, assets, records, and documents according to the provisions of the law and decentralization of the Director.

- Perform other tasks assigned by the Director of the Information Security Department.

>> CLICK HERE TO READ THIS ARTICLE IN VIETNAMESE