About us
Center for Incident Prevention in ICT Systems of Financial Institutions
FIN-CSIRT is an incident response team in the field of cybersecurity that deals with detecting, responding to, preventing, and analyzing cyberattacks in the financial sector. It brings together financial institutions in Serbia, providing support in protecting their digital systems and data. Through continuous monitoring, analysis, and sharing of relevant information, we are committed to enhancing the security and stability of the financial sector, protecting the interests of our members and users of financial services in the country.
Vision of FIN-CSIRT
The vision of FIN-CSIRT is focused on establishing cooperation among financial institutions and relevant partners to create a more resilient and secure digital environment for the financial sector. The goal is to improve the ability to respond to cyber threats through formalized coordination, information sharing, and the implementation of effective protection strategies.
This vision aims to foster synergy between national and international actors to strengthen the security of financial systems and ensure the integrity of digital resources. Through this cooperation, FIN-CSIRT seeks to build stronger foundations for the prevention, identification, and response to complex cyber threats that could jeopardize the financial sector.
Mission of FIN-CSIRT
- Information and Knowledge Sharing: Creating a platform for the active exchange of relevant information and knowledge among FIN-CSIRT members to enhance collective capabilities for identifying and responding to cyber threats.
- Prevention of Incidents in ICT Systems: Focusing on anticipating and preventing cyber incidents by implementing proactive security measures in the information and communication technologies (ICT) of financial institutions.
- Incident Response in ICT Systems: Efficiently and quickly responding to cyber incidents to isolate threats, minimize damage, and ensure a rapid return to normalcy.
- Capacity Building and Cyber Resilience of Institutions: Developing programs to strengthen the capacity and cyber resilience of financial institutions through training, providing specialized services, and implementing best practices in cybersecurity.
- Raising Awareness Among Financial Services Users: Educating users of financial services to increase awareness of cybersecurity, targeted information on potential threats, and promoting safer use of digital services.
- Creating a Cooperation Network: Building a sustainable cooperation network among relevant participants, both domestically and regionally, for the efficient sharing of information and quick response to current cyber threats.
Activities
Center for Incident Prevention in ICT Systems of Financial Institutions
Information Exchange
Initiating rapid exchange of key information and data among members to improve joint protection and incident response speed.
Exposed Infrastructure Analysis
Continuous analysis of the exposed IT infrastructure, with the aim of identifying potential points of weakness and providing timely information on current vulnerabilities, risks, and threats.
OSINT Analysis
In-depth analysis of cyberspace from open sources. Recognition of potential threats and informing on current risks and protection strategies.
Data Leak Detection
The detection of data leaks enables a quick reaction to the unauthorized use of sensitive information, preserving the integrity of clients’ data.
Analysis of Malicious Programs
Analysis of malicious programs, identification, and recommendations for protection against malicious threats.
Reporting on Cyber Threat Trends (Cyber Threat Intelligence)
Collection of structured information on the latest trends in cyber threats, enabling members to be informed so as to take proactive steps to protect themselves.