28. Dominican Republic 71.43

28th National Cyber Security Index
66th Global Cybersecurity Index
106th ICT Development Index
82nd Networked Readiness Index
Population 10.1million
Area (km2) 48.7thousand
GDP per capita ($) 17.1thousand
NCSI FULFILMENT PERCENTAGE
NCSI DEVELOPMENT TIMELINE 3 years All data
RANKING TIMELINE
NCSI Update Data source
23 Jan 2023 Government officials
24 May 2022 Government officials
10 Mar 2021 Government officials

Version 23 Jan 2023

GENERAL CYBER SECURITY INDICATORS
BASELINE CYBER SECURITY INDICATORS
INCIDENT AND CRISIS MANAGEMENT INDICATORS
  • 9. Cyber incidents response 5/6 83%
    5
    6 83%
    • 9.1. Cyber incidents response unit 3
      3
      3
      Requirements
      Criteria

      The government has a unit (CSIRT, CERT, CIRT, etc.) that is specialised in national-level cyber incident detection and response.

      Accepted references

      Official website or legal act

      Evidence

      Cyber Incident Response Team of the Dominican Republic (CSIRT-RD)

      Decree 230-18

      Article 12. Conformation of the National Cybersecurity Center

      Paragraph III (page 11): In addition, the National Cybersecurity Center will have two main teams: a Cybersecurity Strategies Coordination Team (ECEC) and a Cyber Incident Response Team of the Dominican Republic (CSIRT-RD), which will be assisted by Sectorial Teams of Incident Response.

      Article 17. Functions of the Cyber Incident Response Team of the Dominican Republic (CSIRT-RD).

    • 9.2. Reporting responsibility 0
      0
      1
      Requirements
      Criteria

      Digital service providers and operators of essential services have an obligation to notify appointed government authorities of cyber security incidents.

      Accepted references

      Legal act

      Evidence
    • 9.3. Single point of contact for international coordination 2
      2
      2
      Requirements
      Criteria

      The government has designated a single point of contact for international cyber security coordination.

      Accepted references

      Official website or legal act

      Evidence

      National Cybersecurity Center

      Decree 230-18

      Article 13. Attributions of the National Cybersecurity Center...

      j) Be the point of contact between the Dominican State and other national and international organizations of a similar nature.

  • 10. Cyber crisis management 3/5 60%
    3
    5 60%
    • 10.1. Cyber crisis management plan 0
      0
      1
      Requirements
      Criteria

      The government has established a crisis management plan for large-scale cyber incidents.

      Accepted references

      Legal act

      Evidence
    • 10.2. National-level cyber crisis management exercise 2
      2
      2
      Requirements
      Criteria

      The government has conducted a national-level cyber crisis management exercise or a crisis management exercise with a cyber component in the last 3 years.

      Accepted references

      Exercise document/website or press release

      Evidence

      EU CyberNet experts participated in the national cybersecurity exercise “Cyber llamas” (“Cyber flames”) in the Dominican Republic. The table top exercise was carried out by the Cyber4Dev project in collaboration with the National Cybersecurity Centre of the Dominican Republic on 19 May 2021.

      The purpose of Dominican Republic’s first national level cybersecurity exercise was to define, specify and exercise the role of the National Cybersecurity Council (NCC) in cyber crisis. The focus of the exercise was to test the operational and collaborative practices, regulatory frameworks and political escalation process in a large scale cyber crisis affecting the nation. The fictional scenario, developed in collaboration with the CSIRT-RD and Indotel experts focused on cybercrime targeting DR’s critical infrastructure, government ICT infrastructure and e-services.

      The exercise received active interest and lively participation by executive level representatives from the ministries and agencies that form part of the National Cybersecurity Council. The conclusions of the exercise will feed into the national policy planning, regulatory and capability development processes in cybersecurity.

    • 10.3. Participation in international cyber crisis exercises 1
      1
      1
      Requirements
      Criteria

      The country's team has participated in an international cyber crisis management exercise in the last 3 years.

      Accepted references

      Exercise document/website or press release

    • 10.4. Operational support of volunteers in cyber crises 0
      0
      1
      Requirements
      Criteria

      The procedures for using volunteers in the field of cyber security are established by legislation.

      Accepted references

      Legal act

      Evidence
  • 11. Fight against cybercrime 9/9 100%
    9
    9 100%
    • 11.1. Cybercrimes are criminalised 1
      1
      1
      Requirements
      Criteria

      Cybercrimes are defined by legislation.

      Accepted references

      Legal act

      Evidence

      Law No. 53-07, of April 23, 2007, against High Technology Crimes and Offenses
       

    • 11.2. Cybercrime unit 3
      3
      3
      Requirements
      Criteria

      There is a government entity with a specific function of combatting cybercrime.

      Accepted references

      Official website or legal act

      Evidence

      Article 37.- Investigation and Submission. Investigations of cases and Submission to justice of the persons involved will be supported by the Department of Investigation of Crimes and Crimes of High Technology (DICAT), which will have liaison officers of the Computer Crime Investigation Division (DIDI) of the National Department of Investigation, of the Secretary of State of Forces Armed and the National Directorate of Drug Control.


      DICAT

    • 11.3. Digital forensics unit 3
      3
      3
      Requirements
      Criteria

      There is a government entity with a specific function of digital forensics.

      Accepted references

      Official website or legal act

      Evidence

      Law 454-08 that creates the National Institute of Forensic Sciences of the Dominican Republic. G.O. No. 10491 of October 28, 2008. As a dependency of the Public Ministry, it has the mandate and power to carry out digital forensic analyzes to support criminal and judicial investigations.

      Article 11. Attributions of the Sub-directorate of Forensic Physics. The Sub-directorate of Forensic Physics has the following attributions.

      Submit expert reports on the analysis, comparison, physical and instrumental inspection of evidence.

      Provide services in the following areas: a) Identification of Firearms and Tool Marks (Ballistics), b) Documentoscopy, c) Digital Evidence, d) Fingerprinting, e) Accidentology, f) Ocular Inspection, among others.


      The National Institute of Forensic Sciences (INACIF), see "services" ("Forensic Physics → Computer forensics")

    • 11.4. 24/7 contact point for international cybercrime 2
      2
      2
      Requirements
      Criteria

      The government has designated an international 24/7 contact point for cybercrimes.

      Accepted references

      Official website or legal act

      Evidence

      Computer Forensics


      High Tech Crimes and Offenses Investigation Department (DICAT), National Police


  • 12. Military cyber operations 6/6 100%
    6
    6 100%
Information Disclaimer

The information provided on the NCSI website is based on publicly available evidence materials. The appearance in the index and subsequent ranking is commensurate to the existence and public availability of such information. The NCSI links to third party websites and information. The NCSI and eGA are not responsible for the accuracy or completeness of third party website information.

What can I do to improve my country's data in NCSI?

Become a data contributor Update a specific indicator with evidence data

CONTRIBUTORS

Jhonatan Carvajal Antigua
Parque Cibernético Santo Domingo