CERT-IS is the National CSIRT (Computer Security Incident Response Team) with the telecommunication sector as its primary constituency. The constituency also includes certain critical information infrastructure (CII) entities that have signed contracts with CERT-IS. Other entities outside the primary constituency, are served on best-effort terms.

CERT-IS´s role is the analysis of cyber security threats and to give assistance to its primary constituency members using both proactive and reactive measures to prevent cyber security incidents and to minimize their impact.

CERT-IS gives advice regarding threats and responses to its primary constituency members and publishes public warnings when needed.

In the event of a cyber crisis CERT-IS´s role is to coordinate responses.

As a National CSIRT, CERT-IS is the National Point of Contact (NPoC) for Iceland.

The legal provisions for CERT-IS are stated in the Telecommunication Act no. 81/2003, art. 47 and regulation no. 475/2013.