Search Results

This Directive aims at providing important instructions and guidelines for securing GoR entities ICT infrastructures and Information by:  Strengthening ICT infrastructure and information access. Insuring high availability of data and systems for dedicated ...

Install and configure Gateway firewall Configure Inbound and outbound ACL (Access Control List) to control only requiredand legitimate traffic only to be allowed to go In and Out of the network. Close all the ports and only open the required port Avoid "a...

Implement IPS at gateway for all incoming and outgoing traffic to detect and prevent any intrusion or threats Configure intrusion protection system to protect against denial of service attacks or any malicious attacks 

You must ensure that all the mails are scanned before entering into network/ email server and Antispam / Antivirus system Implement Policy based Data leak protection solution to protect sensitive data leaving out of your network through emails 

You must have gateway level antivirus protection to detect and disinfect the network traffic to ensure all detectable virus on the gateway not entering and infecting internal servers or systems 

Wi-Fi must be secured by setting wireless hotspots using proper authentications and strong password or key  No wireless networks should be connected to their internal network directly. They must be connected through firewall.

You must implement a web proxy to protect end users from web threats and control their time online You must apply URL-filtering policies and enforce browsing quotas and time-based web surfing for individual users or groups to limit the use of unwanted appli...

You must harden web servers and apps ensuring minimum secure application are hosted Every web services MUST be SSL certificate enabled Thoroughly test the web-based application for any security flaw using guidelines from Open web application security proje...

Acronym Full Name BIDAT Business, Information, Data, Application and Technology Architecture BU Business Unit CIO Chief Information Officer DGP Digital Government Platform ...

Design and implement network to have clear visibility of the traffic going between:  Computer to computer Computer to Server, Server to Computer, Server to Internet and Internet to Internal server and Computers. Use 'Static IP addressing' on syst...

In October 2015, The Government of Rwanda issued the “SMART Rwanda Master Plan” (SRMP), which provides the elements needed to achieve the vision of “a Knowledge Based Society”. The SRMP identified a set of core objectives, including the following: ...

All the system and application MUST have latest patch installed Test the patch before applying and then apply in the production environment Patch network devices (Firmware), applications, middleware, OS and any utility programs (Office, Adobe etc ... ) 

You must carry out Regular vulnerability scanning to ensure all the known vulnerabilities such as bugs and configurations are identified All the identified vulnerabilities MUST be fixed by patching the systems or applications immediately and proper systems ...

Install End-Point Protection to secure all the end points such as Host based IDS / IPS for servers Ensure that end user devices, systems and application are protected using Endpoint protection and Antivirus solutions. 

Strictly use strong passwords:  Minimum 10 character Combination of Alpha numerical and special characters Don't reuse the passwords Have different passwords for different accounts Change all default passwords upon installation of new software or ...

Smart Rwanda Master Plan Context In October 2015, The Government of Rwanda issued the “SMART Rwanda Master Plan” (SRMP), which provides the elements needed to achieve the vision of “a Knowledge Based Society”. SRMP identified a set of core objectives, includi...

Ensure critical services are available whenever it required by: Having Redundant System components  Redundant Servers Failover networks Disaster Recovery Arrangements Such as alternative site or arrangements based on the criticality of the services they ...

All the GoR Entities should have backup:  Daily Weekly Monthly and Yearly One copy of backup should be stored at offsite securely All the backup should be encrypted with password Backup should include data, applications, configurations and Syste...

Have a clearly defined incident management procedure (refer to the Incident management procedure circulated). Every Institution should establish an Incident management team and clear communication channel internal or external for communicating the incidents...