Many organizations name and maintain a team of people trained and authorized to handle a security incident. Such teams, called computer security incident response teams (CSIRTs) or computer emergency response teams (CERTs) are standard at large private and government organizations, as well as many smaller ones. A CSIRT can consist of one person or it can be a flexible team of dozens of people on call for special skills they can contribute.
The September–October 2014 issue of IEEE Security & Privacy magazine is devoted to CSIRTs. Papers include a case study of a national CSIRT and its coordination with other CSIRTs, how CSIRTs can (and must) automate the evaluation of millions of data items received hourly, and a study of CSIRT personnel from a psychological perspective to help teams be more effective.