The Ministry of Science and ICT announced on the 13th that it is recruiting participating corporations for the 'first half of the year cyber crisis response simulation training' to support the enhancement of cyber crisis response capabilities between the Korea Internet & Security Agency (KISA) and the private sector.
The Ministry of Science and ICT and KISA conduct biannual (in the first and second half of the year) cyber crisis response simulations to raise security awareness among our corporations and enable them to respond swiftly in the event of a cyber crisis, such as DDoS attacks, amid the increasing security threats in the rapidly changing digital environment.
Regardless of corporate size or industry, not only small and medium-sized enterprises but also large corporations and non-profit corporations can apply without limitation. The recruitment period is from the 14th of this month to May 2.
The training will be conducted over two weeks from May 19 to May 30. The training will cover ▲ response to hacking emails ▲ checks for distributed denial-of-service (DDoS) attacks and responses ▲ simulated intrusions targeting corporate websites ▲ vulnerability detection and response training.
In the case of vulnerability detection and response training, previously, corporations could only apply if they had security devices to check for vulnerabilities. These included firewalls, IPS (a security system that identifies, detects, and blocks various viruses and malicious traffic), and other security devices or solutions. Starting this time, it will be improved to allow any corporation operating a server to participate by detecting and responding to security vulnerabilities on publicly available external servers.
KISA provides participating corporations with response guides by training area, materials on recent trends in security incidents, and support to improve their incident response systems and strengthen their security capabilities. Participating corporations can document the details of this simulation training in the status of their information security activities under the information security disclosure system.
Choi Woo-hyuk, director of the Information Security Network Policy Bureau at the Ministry of Science and ICT, noted, "Through this training, I hope that our small and medium-sized enterprises and non-profit organizations will enhance their awareness of the importance of security and further refine their crisis response know-how," and added, "We will continue to strive to strengthen the security capabilities of corporations by encouraging effective programs and repetitive training.