Abstract
In recent years, the cybercrime is increasing and construction of the strong information security is required in organizations, such as an enterprise, as a countermeasure against a cybercrime. The activity called CSIRT (Computer Security Incident response Team) to one of them exists. Although CSIRT is effective activity for a cybercrime, still, the deployment is not enough. As this main factor, it is mentioned that CSIRT is high cost structure, that visualization of an effect is insufficient, etc. This paper describes visualization of the high cost structure and the effect which are the subjects of CSIRT from a viewpoint of CSIRT activity deployment. Specifically, LoA (Level of Assurance) to which its attention is paid in the security field is introduced for CSIRT. Thus, proposal of cost reduction and visualization of an effect are performed by performing a level division for CSIRT. Accordingly, a judgment of a management interest is made easy and it contributes to spread and facilitation of CSIRT.