Office of the Government Chief Information Officer

Pacific Islands countries are continuing to prioritise cybersecurity to respond to increasing threats from the global Internet, protecting their nation and working together to protect the regional community. Some Pacific Island countries have prioritised building a National Computer Incident Response Team (CIRT) to drive further development of cybersecurity capacity. The International Telecommunication Union is working with nations to build CIRT capacity and strengthen existing teams to respond to current and emerging cyber threats. The Oceania Cyber Security Centre (OCSC) from Melbourne, Australia are working in partnership with the Global Cyber Security Capacity Centre (GCSCC) at the University of Oxford and the ITU to assess national cybersecurity capacity maturity for nations in the region, using the Cybersecurity Capacity Maturity Model (CMM). The CMM assessment identifies gaps and makes recommendations to develop a nation’s cybersecurity capacity, including: national cyber policy and strategy; cyber culture and society; cyber education, training and skills; and cyber legal and regulatory frameworks.


The Office of the Government Chief Information Officer (OGCIO) has invited the ITU and OCSC to conduct their assessments of Vanutu and the ITU’s training workshops with stakeholders to further enhance the nation’s cybersecurity capacity between 18-22 March. The major stakeholders, include Ministries, Corporations, Authorities, Banking and Finance Institutions, ICT Service Providers, Internet Services Providers, Academia, Private Sector and Non-Government Organisations, who have all been invited to participate in the week-long sessions. Presentations to share the latest information on cybersecurity issues will be made by the ITU. The ITU’s assessment will cover: Stronger coordination, collaboration and information sharing between CIRTs and other relevant players; assessment for the national CERT of Vanuatu; Design and implementation plan for strengthening the national CERT; Stocktaking of activities being undertaken in the selected countries by national, regional, and international organisations, and in the region in general; awareness and training workshops aimed at building and strengthening human capacity in cybersecurity related matters in general and CERTs in particular.