EISA (Riigi Infosüsteemi Amet - RIA, in Estonian) was formerly known as the Estonian Informatics Centre (Riigi Infosüsteemide Arenduskeskus - RIA, in Estonian). It has 11 main functions, but the reorganisation affected primarily the two departments dealing with information security.
These are:
- The Department of Critical Information Infrastructure Protection (CIIP), which evaluates the security of information systems in Estonia and carries out risk assessments. Every provider of an electronic service in Estonia is responsible for the security of their system, and CIIP advises the owners of information systems on how to assess risks and how to protect their services.
- The Computer Emergency Response Team Estonia (CERT-EE), which handles security issues involving the '.ee' domain. This department responds if ever Estonian websites or services should come under cyber attack or if Estonian computers start distributing malware. It also has the capability to reverse engineer malware.
EISA will also have a new purview, namely surveillance. It will monitor the architecture and maintenance of important information systems in the public and private sectors in regard to the security of those services and the development of new information systems.
Background information:
The Estonian Information System's Authority was established by the Estonian government to solve the main IT problems common to several public organisations and to manage the work of the state's information systems. It is responsible for the coordination and implementation of the development of state registers, computer networks and data communication, standardisation, public eProcurement, monitoring Estonia's IT situation, and so on.
Further information:
- Original news article - EISA
- Additional information on EISA
- Background information - ePractice eGovernment Factsheet for Estonia
---
Quelle/Source: epractice, 12.07.2011
Bitte besuchen Sie/Please visit:
