Presenting the proposed CERT model of defense organizations in order to reduce cyber threats

One of the most important things to keep in mind when security incidents occur is for a military organization to know how to respond appropriately to that incident. In fact, speed in detecting, analyzing, and responding to a security problem reduces the risk and cost of repair. CERT, the Computer Emergency Response Team, is responsible for supporting and servicing to prevent, respond to, and eliminate computer incidents such as malicious services, malware release, unauthorized access, improper use, and combined attacks. In order to respond to incidents that occur in the shortest possible time, it is necessary to set up a reliable CERT in military centers; In such a way that in a reliable environment, the network can be controlled and attacks and unauthorized intrusions can be detected, and in the shortest possible time, with the optimal communication between the components, the response speed can be increased; Therefore, the existence of CERT in these organizations is a strategic issue. In this research, with the studies conducted and using the opinion of military experts in the field of cyber and statistical results analysis, the proposed CERT model of hybrid military (hybrid), services and services to be provided, position and level of authority and CERT organizational chart Military centers are provided.