A CERT (Computer Emergency Response Team) is a specialized team focused on handling, analyzing, and coordinating cybersecurity incidents. Synonyms include CSIRT (Computer Security Incident Response Team) and PSIRT (Product Security Incident Response Team).
ISO 27001 Annex A controls A.5.24–A.5.28 (Information Security Incident Management) provide the normative framework for CERT operations. In larger organizations, the internal CERT/CSIRT handles incident response, forensics, and coordination. Smaller organizations rely on external CERTs or sector-specific teams (e.g., CERT-Bund, industry-specific CERTs). Collaboration with CERTs provides valuable threat intelligence and early warnings. Your ISMS should document which CERTs serve as contacts and what the communication channels look like.