Sri Lanka Financial Sector Computer Security Incident Response Team

(FinCSIRT)

"Together, We Build a Secure Financial Sector"

Information Security and Resilience Framework

Framework, enables the establishment of effective, efficient and transparent information security and resilience control over the organizational threat landscape.

Download (PDF)
Recommended Control List

Identified Sample Risk Scenarios in an Organization and the recommended minimum controls that the organization could implement to manage its pertaining risks.

Download (PDF)

Download (.xlsx)
Recommended Minimum Policy List

Recommended minimum policy list with covering areas that the organization should implement to manage its pertaining risks.

Download (PDF)

Download (.xlsx)
Recommended App Go Live Control List

A control list that the organization could have in place before an application go live.

Download (PDF)

Download (.xlsx)
Member Incident Identification and Reporting Guidelines

FinCSIRT issued this as a supporting document for the Financial Sector organizations to identify information security incidents

Download (PDF)
2012 Windows Server R2 Hardening Guide

This manual is based on the CIS Benchmark and it is a derived version which address the must have security controls which the servers need to be implemented with and hardened.

Download (PDF)
Red Hat Enterprise Linux 7 Hardening Guide

This manual is based on the CIS Benchmark and it is a derived version which address the must have security controls which the servers need to be implemented with and hardened.

Download (PDF)