FIRST is the global Forum first valentine’s day gift for her Incident Response and Security Teams FIRST is the premier organization and recognized global leader in incident response. Membership in FIRST enables incident response teams to more effectively respond to security incidents reactive as well as proactive.

FIRST brings together a variety of computer security incident response teams from government, commercial, and educational organizations. FIRST aims to foster cooperation and coordination in incident prevention, to stimulate rapid reaction to incidents, and to promote information sharing among members and the community at large. Apart from the trust network that FIRST forms in the global incident response community, FIRST also provides value added services. Currently FIRST has more than 600 members, spread over Africa, the Americas, Asia, Europe and Oceania. Big Data SIG Incident Detection and Response at Scale. CVSS SIG: Common Vulnerability Scoring System For a global approach towards scoring metrics for vulnerabilities. Cyber Insurance SIG To coordinate cyber insurance actuarial and modelling work with professional incident response and digital forensic teams.

Cyber Threat Intelligence SIG To define Threat Intelligence in the commercial space. DNS Abuse SIG Understanding the international customary norms applicable for detecting and mitigating DNS abuse from the perspective of the global incident response community is critical for the open Internet’s stability, security and resiliency. Ethics SIG The Ethics SIG seeks to further the professionalization of the FIRST Community and improve the global understanding of SIRTs through the development of an ethical code for FIRST Members. FIRST Multi-Stakeholder Ransomware SIG This SIG will foster collective action among the FIRST constituents, peer security organizations, and other groups who are focusing on the Ransomware Response, mitigation, remediation, investigation, and prevention.

ICS SIG: Industrial Control Systems In ICS-SIG we bring together expertise from several sectors to create processes, best practices and incident response support recommendations and package useful open source tools for the ICS environments. IEP SIG: Information Exchange Policy The initial goals of this SIG are to collaboratively develop an extensible framework for defining information exchange policy and a set of standard definitions for most common aspects. Information Sharing SIG The core mission is to support existing and new FIRST members to practice information sharing and acquire feedback from the members to improve the information sharing practices. Malware Analysis This SIG will advocate and promote the sharing of malware analysis tools and techniques to enable CSIRTs to combat and analyze malicious code. Metrics SIG To improve CSIRT incident management practices within the FIRST community. NETSEC SIG To foster the deployment of inter-AS network security BCPs, coordinated mitigation, and information sharing.