Quezon City — In line with its commitment to institutional cybersecurity and in support of national digital protection efforts, the National Labor Relations Commission (NLRC) has issued Administrative Order No. 12-05-B, Series of 2025. This latest directive builds on the foundation laid by Administrative Orders 12-05 and 12-05-A, and further aligns the Commission with the goals of the National Cybersecurity Plan 2023–2028 and Executive Order No. 50, Series of 2024, which call for improved cyber resilience and coordinated incident response across all government agencies.

The Order clearly defines and institutionalizes the distinct roles of two key units within the NLRC’s cybersecurity framework—the Security Operations Center (SOC) and the Computer Emergency Response Team (CERT). While both are crucial to protecting the Commission’s information systems, the Order outlines their separate mandates to enhance operational clarity, efficiency, and accountability.

The SOC is responsible for real-time monitoring, threat detection, and the proactive prevention of cybersecurity incidents. As the first line of defense, it also manages core functions such as firewall and access control administration, compliance monitoring, and the analysis of security metrics to support executive decision-making. On the other hand, the CERT is activated in the event of a cyber incident. Its core responsibilities include incident containment, forensic analysis, system recovery, and post-incident reporting. The CERT also serves as a liaison with legal units, forensic experts, and external stakeholders such as law enforcement agencies, ensuring a swift and coordinated response to any cybersecurity threat.

To formalize operational roles and accountability, the Order introduces a RACI Matrix (Responsible, Accountable, Consulted, Informed). The SOC, led by a SOC Manager, is composed of three tiers of analysts handling everything from alert monitoring to advanced threat hunting. Meanwhile, the CERT is headed by a CERT Leader and includes Incident Managers, Forensic Analysts, and Recovery Specialists. The CERT is chaired by Commissioner Gavino R. Meneses, Jr. of the 6th Division, while the SOC is led by Mr. Christian Ericson B. Soriano, Head of the Data Center.

NLRC Chairperson Grace E. Maniquiz-Tan emphasized that the formalization of the roles of the Security Operations Center (SOC) and the Computer Emergency Response Team (CERT) reinforces the Commission’s readiness to safeguard critical data and maintain uninterrupted public service in an increasingly digitalized landscape. She noted that this strategic initiative not only aligns with national cybersecurity mandates but also affirms the NLRC’s ongoing commitment to strengthening public trust in its digital infrastructure.

With the implementation of Administrative Order No. 12-05-B, the NLRC expects to significantly enhance its cybersecurity posture, ensuring its systems and data remain protected in an increasingly digital environment. This move reflects the Commission’s commitment to modern governance, operational resilience, and the safeguarding of public trust in its digital infrastructure.

#NLRC #CyberSecurity #DigitalResilience