Organisations have increasingly complex environments. This connects with the demanding flexibility and availability requirements regarding the way applications and services are consumed by their users. The classic perimeter disappears, and the attack surface increases, requiring specific adaptation of security processes.
Added to this new scenario, organisations face increasingly sophisticated and diverse attacks and methods, with attackers becoming more professional and all of us increasingly exposed to cybercrime. Similarly, security devices and solutions are becoming more and more sophisticated and diverse.
All of the above, coupled with the need to comply with certain legal obligations in many sectors, make it increasingly necessary for companies to have a dedicated computer security incident response team (CSIRT).