Sectoral CERT

A Sectoral Computer Emergency Response Team (Sectoral CERT) is responsible for coordinating cybersecurity monitoring, response, and mitigation activities for organizations within a specific Critical Information Infrastructure (CII) sector.

Under the Cybersecurity Act B.E. 2562 (2019), the National Cyber Security Committee (NCSC) has the authority to define the responsibilities and structure of Sectoral CERTs. Government agencies or regulators with sufficient capability may be assigned to operate these CERTs for specific sectors.

Responsibilities of Sectoral CERT

Monitor cyber threats affecting sector organizations
Coordinate cybersecurity incident response
Issue alerts and advisories to sector members
Support incident analysis and mitigation
Coordinate with national cybersecurity authorities

Section 50

The committee has the authority to designate the responsibilities and structure of Sectoral CERTs responsible for coordination, monitoring, and response to cyber threats.

Section 52

CII organizations must provide contact information of system owners and administrators to regulators and designated Sectoral CERTs.

Section 59

When cyber incidents occur, regulators and Sectoral CERTs must collaborate to analyze the situation and support affected organizations.