Skip to main content

+38 (044) 281-88-01

+38 (044) 281-88-01

Cyber Incident Response Operations Center



The cyber incident response center subsystem is a central component of the vulnerability detection and response system for cyber incidents and cyberattacks and provides:

  1. centralized management of all subsystems of the vulnerability detection and response system to cyber incidents and cyber attacks;
  2. centralized collection and accumulation of information on network information security events;
  3. real-time monitoring and processing of cyber threats and cyber incidents;
  4. providing practical assistance to cybersecurity owners on preventing, detecting and dealing with cyber incidents and cyber attacks.

The cyber incident response center subsystem detects malicious activity as well as system and network anomalies on cybersecurity objects by analyzing data from network devices (active sensors, firewalls, servers, stations, scanners in authorization systems, internal and external sources of cyber threat data.

Monitoring, detection and counteraction of cyber threats at cybersecurity facilities, active response to network attacks are provided by sensors installed at cybersecurity facilities.

System for detecting vulnerabilities and responding to cyber incidents and cyberattacks for the purpose of information exchange on cyber incidents, detection and cessation of cyber attacks interacts with cybersecurity management centers, industry centers for cybersecurity management, information systems, other systems and organizations regardless of ownership.

Regulatory framework:

  1. Law of Ukraine "On Basic Principles of Cyber Security of Ukraine";
  2. Presidential Decree Decree of the President of Ukraine of August 26, 2021 № 447 «On the decision of the National Security and Defense Council of Ukraine of May 14, 2021 "On the Cyber Security Strategy of Ukraine"»;
  3. Resolution of the Cabinet of Ministers of Ukraine of December 23, 2020 № 1295 «Some issues of ensuring the functioning of the system for detecting vulnerabilities and responding to cyber incidents and cyberattacks».
  4. Order of the Administration of State Special Communications of June 24, 2022 No. 284 «On the approval of the Procedure for the transfer of equipment sets of the telemetry collection subsystem of information and communication systems (active sensors), the system of detecting vulnerabilities and responding to cyber incidents and cyber attacks to cyber protection facilities».

Contacts of technical support
E-mail: soc@cip.gov.ua