Role and communication of the IT coordinators
tl;dr[1] IT coordinators are the communication interface between the decentralized institution and the GITZ.
In recent weeks, there have been a number of security-related vulnerabilities in various software products. According to the general assessment, all incidents involved serious vulnerabilities with major risks. As a result, the GITZ and the Chief Information Security Officer (CISO) staff unit have sent out several warnings and notices to the IT coordinators. Based on the feedback on the e-mails sent, here is an overview of the role and communication of the IT coordinators.
There was some feedback that they are not administrators and cannot implement the proposed solutions. In our view, this is absolutely correct. The IT coordinators should not necessarily be administrators of the respective systems. But they should know who the right contact person is, who knows the respective, possibly affected system and can act. Of course, there are overlaps and some people fulfill both of these roles. We rely on you as IT coordinators to act as multipliers in your institution.
(Note to the administration: The IT coordinators in the administration are known to us as particularly IT-savvy users and we make sure that we keep them informed at all times, even if there is not always a need for action).
From the GITZ's point of view, it is important to have informed contacts in order to be able to quickly establish contact in the institutes and facilities if there are high-risk and therefore time-critical incidents in IT. For this reason, the GITZ and the CISO staff unit will continue to contact the IT coordinators in the event of serious IT security vulnerabilities and will continue to rely on good communication between the partners.
[1]
de.wikipedia.org/wiki/Liste_von_Abk%C3%BCrzungen_(network jargon)#T
Sebastian Homann