• 15/09/2021 CIKF is trying to hold a study group which focused on “understanding Dr. Shook’s method” to get ready for the up coming CIBOK 2.0.
• 15/09/2021 CIBOK1.0 Price Down
• 21/12/2019 CIKF will hold study group and workshop in 2020 Q1 and welcome for non-members to join the session.
• 12/12/2019 Dr. Igor Kotsiuba from CIKF attended IEEE BigData 2019 conference in Los Angeles, California and had a presentation there.
• 09/12/2019 Joined Digital Forensic Community 2019 in Tokyo and had a presentation at the event.
• 18/11/2019 Joined NICE (ational Initiative for Cybersecurity Education) 2019 Conference in Phoenix, Arizona.
• 15/10/2019 Dr. Igor Kotsiuba from CIKF lectured at NTNU (Norges teknisk-naturvitenskapelige universitet) and introduced CIBOK and CIKF activities to the students.
• 26/07/2019 The training and seminar schedule was determined for the last half of 2019.
• 25/07/2019 CIKF sponsored “Finance Forum 2019”, the security seminar for the finance sector
• 18/06/2019 Special Seminar with Chief Editor, Dr. Shane Shook was held

The Cybercrime Investigation Body Of Knowledge was developed with the support and contributions of 12 experienced legal, judicial, and industry leaders. An additional 14 select reviewer from three countries also provided critical feedback to produce this important Body of Knowledge for the development of a standard for investigating cybercrimes.
The CIBOK (1st edition) made its debut in November 2016 with the approval of the CIBOK Steering Committee and is available in print.
The objective of the CIBOK is to coordinate and demonstrate the knowledge, techniques and attitudes required for cybercrime investigation; including the systematic management of cybercrime investigative resources and staff.

The CIBOK is organized according to the following five objectives:

1. Popularizing and promoting a global commonsense and consistent approach to cybercrime investigations.
2. Positioning of systematized practices for defining the scope of cybercrime investigations.
3. Characterizing through demonstration the content that should be put into practice in cybercrime investigations.
4. Providing structural guidance for utilizing CIBOK as an investigation asset to plan, conduct, and review cybercrime investigations.
5. Demonstrating the organizational and individual skills and knowledge development needed for cybercrime investigations.

The CIBOK is intended for these readers:

For investigators and prosecutors in law enforcement

• Investigators new to cybercrime investigation

  

• Those who organize cybercrime investigation department

  

• Future senior officers who will lead investigation

  

• Human resource development trainers

  

For IT/Security managers and staff in private organizations

• Those who are in charge of incident response in SOC, CSIRT, and IT department

  

• CIO and CISO who organize incident response system

  

• Manager of CSIRT or risk management department

  

• IT Security human resource development trainers

  

CIBOK objectives and application

• Determine the current capabilities of an organization

  Organizations

  

  • Objectively evaluate capabilities to requirements
  • Define and optimize information systems in an organization
  • Determine through measurement the maturity of an organization

• Review department requirements

  Managers

  

  • Determine roles, duties, and staff needed
  • Review business process requirements by risk tolerance and impact
  • Develop training and staffing plans

• Fulfill professional requirements

  Professionals

  

  • Develop self-awareness of their own role
  • Pursue associated skills development
  • Understand career path

A steering committee of industry and legal professionals formed in 2016 with the goal of helping to protect ICT (Information and Communication Technology) assets and operations of society from cybercrime. To achieve that goal, the CIBOK 1st Edition was produced with the support of Dr. Shane Shook as executive editor. Dr. Shook coordinated the definition of the CIBOK structure and content with thought leaders and experienced practitioners from around the world. Their individual and collective experiences included traditional criminal investigations, litigation, and prosecution – as well as public and private sector cyber security breach investigations and response.
The guiding principle throughout the development of the CIBOK was to produce a useful “body of knowledge” from contributors’ experience so that professionals in the field - including law enforcement officers, judiciary, and corporate risk management staff – could have a definitive reference for conducting efficient and actionable investigations of cybercrimes. To support this principle, specific examples of knowledge, skills, techniques, and human resources requirements were expanded upon with examples to provide a method of knowledge transfer for organizational training.
The CIBOK Steering Committee will evolve to adapt to global requirements with the participation of industry and law enforcement professionals. Contributions, and participation, are welcomed.

Executive Editor

• 

Authors

• 

• 

• 

• 

• 

• 

• 

• 

• 

• 

• 

Download CIBOK 2nd edition. The copyright is reserved for Japan Cybersecurity Innovation Committee (JCIC) so that delivery to the others nor secondary use of CIBOK is prohibited. If you wish to use for the 3rd party, please inform us via Inquiry form below.

• 

  Download

Please submit your inquiries concerning CIBOK and training with the form below.
Please allow us three business days to respond to your provided email address.