List

TF-CSIRT Trusted Introducer


The Trusted Introducer Service – a.k.a. TI – was established by European cybersecurity teams already in 2000 to address common needs and to provide vital support for all security and incident response teams.

Since then it forms the trusted backbone of infrastructure services and serves as a clearinghouse for CSIRTs, SOCs, ISACs, PSIRTs and other cybersecurity entities that play a critical role in managing information security incidents.

The Foundation of Trusted Collaboration

Directory List

TI Directory

A well maintained database of cybersecurity teams, including CSIRTs, CERTs, SOCs and other teams. Right from the beginning a sub-set was made publicly available, as all teams and effected sites benefit from widely available point of contact information.

registration

Become Listed

All teams need to start somewhere - within TF-CSIRT this is to become listed. Getting recognition and visibility and become connected into our community allows you to grow.

Read more why you should become part of the TI!

Sim3 Frontal

Become Mature

The online self-assessment tool for SIM3 focuses on the maturity of operational teams handling or responding to security incidents and attacks. If you are ready become TI Certified!

Member Services

Get Access

All full members -- TI Accredited and TI Certified -- and TI Associates get access to member services. Beside trusted communication circles and full access to the TI Directory they have voting rights and decide on the future of TF-CSIRT.


At a Glance

To safeguard the trusted environment a comprehensive set of processes have been defined, outlining what it takes to participate and maintain a team's status within the TF-CSIRT Community.

This requires a long-term committment of the participating teams and individuals and the TI processes emphasize the need for continuous improvement and maintenance as regular tasks.

Although many years have passed since the first team was created, only very few standards apply to these processes. To provide a consistent overview for anyone interested, several de-facto standards are provided as reference.

The TI service differentiate between four categories:

  • teams can increase their status over time and become
    • TI Listed which provides basic information about the team itself as well as shows endorsement of the team by the TI community;
    • TI Accredited, if they have been listed before and commits themselves to ensure a defined level of best practices and acceptance of the established TI policies for such teams;
    • TI Certified, if they have been accredited before and demonstrate towards trusted SIM3 Auditors from the TF-CSIRT Community a confirmed level of maturity as defined by the SIM3 Standard and the TI Certification Profile.
  • security experts can participate as TI Associates.

The TI Accreditation and Certification requires regular efforts to maintain the team's status. Such efforts are also expected from TI listed teams. To ensure a high level of trust within the TI community, TI listed teams that have not become accredited within three years are required to demonstrate the continuous support of the listing by the TI community. This is called "re-listing". Therefore the directory of the TI service can be trusted to reflect the actual and accurate snapshot of all teams listed regardless of their status.

TI Certification is meant for those accredited teams who have internal and/or external reasons to have their maturity level gauged in an independent way. When the certification succeeds, the team can show this to their constituents, to their funding bodies, to other parties they want to cooperate with. The certified teams are and stay part of the community of accredited teams - the certification can be seen as extra branding providing it's own benefits for such teams. Again to keep this expectation over time, a re-certification is required every three years.

Get in Touch

If you are interested in becoming of our community, use the TI services or have questions about the cybersecurity eco-system in Europe, feel free to contact us.