ABSTRACT
As the digital landscape becomes increasingly complex, the role of national Computer Security Incident Response Teams (CSIRTs) in ensuring cybersecurity resilience has gained greater importance. This chapter presents a case study of CERT.LV, Latvia’s national and governmental CSIRT, assessing its current maturity and development over the past decade. The evaluation is conducted using the Security Incident Management Maturity Model (SIM3 v2), measuring CERT.LV’s progress across four key quadrants: organisation, human resources, tools, and processes. By comparing findings with a 2015 evaluation conducted in cooperation with the European Union Agency for Cybersecurity, the study identifies key advancements, persistent challenges, and areas for future improvement. The research employs a practitioner-centric approach, drawing on documentary analysis of policy documents, technical reports, operational records, and professional insights. Findings indicate that CERT.LV has made significant progress in formalising its governance structures, expanding its workforce, enhancing technological capabilities, and streamlining incident response procedures. CERT.LV has also strengthened its integration within the national cybersecurity framework and has improved cooperation with international cybersecurity networks. The findings provide valuable insights into the evolution of national CSIRTs, offering policy recommendations for strengthening cyber resilience in an increasingly volatile digital environment.
