Monitoring of information security events of informatization objects of state bodies
In accordance with subparagraph 7-2) of paragraph 1 of Article 7-4 of the Law of the Republic of Kazakhstan “On Informatization”, the National Coordination Center for Information Security (eferred to as NCCIS) of the Joint Stock Company “State Technical Service” (referred to as JSC “STS”) monitors the events of information security of informatization facilities of state bodies (hereinafter – MEIS).
In December 2019, the MEIS was launched in the SOC format (the format for implementing information security measures, in which a continuous centralized process of monitoring information security events and information security incidents in relation to the object of protection and prompt response to them) is conducted through information security tools (referred to as the IST). As part of the work on the MEIS, JSC “STS” took part in measures to equip central government agencies (hereinafter – CGAs) with advanced IST, in connection with which a high degree of protection of the information and communication infrastructure of the CGAs was achieved. The centralized equipping of the IST of the CGA within the framework of the MEIS made it possible to promptly identify IS incidents in the information and communication infrastructure of the CGA, notify (with recommendations on preventing the spread of malicious software) the responsible persons of the CGA, respond to IS incidents, and also identify a number of problems in the CGA in the field of IS.
It is worth noting that over the period from 2020 to 2021, the number of re-recorded IS events within the framework of the MEIS decreased by 17%, which indicates an increase in the level of response to identified IS incidents and a gradual improvement in the situation with IS in the SGA as a whole.