About MESA-CSIRT
Computer Security Incident Response Team (CSIRT) Mubadala Energy South Andaman, abbreviated as MESA-CSIRT, was established to support the cybersecurity system within Mubadala Energy Indonesia. MESA-CSIRT is classified as an Organizational Cyber Incident Response Team with operational funding sourced from the company's internal budget. This team is also part of the global corporate cybersecurity ecosystem, coordinating with the Global IT Security team at headquarters.
Visi
Vision
To become a leading cyber incident response team that is proactive, reliable, and trusted in protecting Mubadala Energy's information assets, ensuring business operational continuity, and strengthening collaboration with national regulators (BSSN and SKK Migas) to create a robust and sustainable corporate cybersecurity ecosystem.
Misi
Mission
To protect the company's information assets through effective, swift, and coordinated cyber incident handling, while supporting the implementation and continuous improvement of the Information Security Management System (ISMS) in accordance with ISO/IEC 27001 standards.
Team Structure
Chairman: IT Manager Indonesia
- Secretary: IT GRC Indonesia Lead
- Crisis Manager: HSSE & Asset Integrity Team Indonesia
- Cybersecurity Manager: Manager Cybersecurity
- IT Incident Service Center Sub-team: IT SOC Team
- Communication Sub-team: Communication Team Indonesia
- Legal Sub-team: Legal Team Indonesia
- Risk Management Sub-team: HSSE & Asset Integrity Team Indonesia
- Physical Security Sub-team: HSSE & Asset Integrity Team Indonesia
Contact Information
Recommended Contact Method
To contact MESA-CSIRT, please use email at id[dot]csirt[at]mubadalaenergy[dot]com or via phone number (+62 21) 39807200 during working hours or 24/7 on-call.
Main Services
Cybersecurity Alerts and Warnings
Delivery of alerts and early warnings regarding the latest vulnerabilities or cyber threats to constituents. CSIRT informs about incidents or threats (new malware, zero-day threats, attack indicators) to relevant electronic system owners, including providing recommendations for necessary preventive actions.
Cyber Incident Handling
Response to cyber incidents, including coordination, analysis, technical recommendations, and direct (on-site) assistance for incident mitigation and recovery. CSIRT acts as the incident control center: receiving reports, conducting initial analysis, providing mitigation guidance, assisting with problem isolation/resolution, and ensuring system recovery steps are completed thoroughly.
Additional Services
| Service | Description |
|---|---|
| Electronic System Vulnerability Handling | Receiving and following up on vulnerability reports in electronic systems owned by constituents, including analysis, verification coordination, and remediation recommendations. |
| Digital Artifact Handling | Analysis of digital artifacts related to incidents (suspicious files, malware, digital evidence), providing technical information, and supporting forensic processes. |
| Threat Intelligence Notifications | Proactive monitoring of potential cyber threats and delivery of periodic information/reports on attack trends, common vulnerabilities, or threat intelligence. |
| Attack Detection | Early detection of cyber attacks through 24/7 security monitoring facilities in collaboration with SOC/MSSP to monitor company networks and systems. |
| Cybersecurity Risk Analysis | Assessment and analysis of cybersecurity risks to information assets and IT infrastructure to understand security priorities and develop mitigation plans. |
| Incident Handling Readiness Consultation | Guidance on cyber incident readiness, incident response procedures, response plan development, drills/testing, and technical team competency enhancement. |
| Cybersecurity Awareness Building | Security awareness programs to cultivate cybersecurity awareness through socialization, campaigns, regular training, phishing simulations, and educational material distribution. |
Types of Incidents Handled
MESA-CSIRT handles various types of cyber incidents affecting the company's Information Technology and Operational Technology systems, including:
- Malware
- Phishing
- Website defacement
- Distributed Denial of Service (DDoS)
- Other incidents impacting confidentiality, integrity, or availability of information services
Incident Reporting
Any cyber security incident can be reported to CSIRT via email at id[dot]csirt[at]mubadalaenergy[dot]com by attaching:
CSIRT will follow up on reports according to procedures. All reports will be recorded in the CSIRT incident recording system and their confidentiality will be maintained.
Policies
Cooperation and Information Disclosure
MESA-CSIRT actively establishes cooperation and coordination with external institutions such as BSSN and other CSIRTs to support national cybersecurity efforts. CSIRT is ready to share information about cyber incidents with government agencies, regulators, law enforcement, and related constituents. In sharing information, CSIRT maintains data confidentiality in accordance with regulations. Sensitive information (state secrets, corporate secrets, personal data) will be kept confidential and only disclosed to authorized parties or constituents who need it.
Communication and Authentication
For regular/routine communication, MESA-CSIRT uses official email and telephone. Instructional communication or incident notifications are delivered via email.
For the exchange of sensitive or classified information, CSIRT implements additional authentication mechanisms and encrypted/secure communication channels. Encryption (PGP/GPG) will be used to protect message confidentiality.
Download Dokumen RFC 2350
The complete RFC 2350 document is available for download in PDF format:
-----BEGIN PGP PUBLIC KEY BLOCK-----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=KFfc
-----END PGP PUBLIC KEY BLOCK-----