Difference between revisions of "EGI CSIRT:IRTF"
Jump to navigation
Jump to search
(→Tasks) |
(Updating volunteers) |
||
Line 23: | Line 23: | ||
== Persons == | == Persons == | ||
=== Coordinator === | === Coordinator === | ||
* | * Vincent Brillault from CERN | ||
=== Volunteers === | === Volunteers === | ||
Line 29: | Line 29: | ||
! Name !! NGI !! Home Organization !! Effort Avalible (PM) | ! Name !! NGI !! Home Organization !! Effort Avalible (PM) | ||
|- | |- | ||
| | |Vincent Brillault || - || CERN || 5 PM | ||
|- | |- | ||
| | |Daniel Kouril || - || CESNET || | ||
|- | |- | ||
| | |Michal Prochazka || - || CESNET || | ||
|- | |- | ||
| | |Sophie Ferry || France NGI || CEA Saclay || | ||
|- | |- | ||
| | |Ursula Epting || German NGI || KIT-GridKa || | ||
|- | |- | ||
| | |Tobias Dussa || German NGI || KIT-CERT || | ||
|- | |- | ||
| | |Sven Gabriel || Dutch NGI || NIKHEF || | ||
|- | |- | ||
|Nuno Dias ||Portugal NGI || LIP || | |||
|Nuno Dias | |||
|- | |- | ||
|} | |} |
Revision as of 09:55, 1 June 2015
public team pages| Incident Response Task Force (IRTF) | Security Drills Group (SDG) | Security Monitoring Group (SMG) |
public pages | Mission | Incident reporting | Dissemination | Alerts | Operational notices | Monitoring | Security challenges | Policies | Contacts |
Incident Response Task Force
Objective
Handle day to day operational security issues and coordinate Computer-Security-Incident-Response across the EGI infrastructure.
Tasks
- Swift response to any reported computer security incident affecting EGI infrastruture
- Security Incident Management
- Existing communication channel (mail list/security wiki) migration
- New communication channel (if needed) setup
- Incident response tools development, evaluation and adaptation
- Incident handling procedures update/maintainence
- Establish additional operational and/or escalation procedures when required
- a procedure to suspend a site from the EGI infrastructure
- a procedure and agreed criteria to ban (blacklist) a user, a group of users and/or a VO
- vulnerability assessment
- Regularly monitor vulnerability databases
- Assess impact of vulnerabilities on the EGI infrastructure
- Advise the project mitigation solutions
- Maintain and extend open source intelligence and information exchange with trusted partners
- Gather information about current cyber attack and threats
- Derive monitoring rules applicable to EGI
Persons
Coordinator
- Vincent Brillault from CERN
Volunteers
class="sortable"Name | NGI | Home Organization | Effort Avalible (PM) |
---|---|---|---|
Vincent Brillault | - | CERN | 5 PM |
Daniel Kouril | - | CESNET | |
Michal Prochazka | - | CESNET | |
Sophie Ferry | France NGI | CEA Saclay | |
Ursula Epting | German NGI | KIT-GridKa | |
Tobias Dussa | German NGI | KIT-CERT | |
Sven Gabriel | Dutch NGI | NIKHEF | |
Nuno Dias | Portugal NGI | LIP |
Vulnerability assessment (part of incident response task force)
class="sortable"Name | NGI | Home Organization | Effort Available (PM) |
---|---|---|---|
Leif Nixon | - | NDGF | |
Michael Hausding | Switzerland NGI | SWITCH | |
Xander Jansen | Dutch NGI | SURFcert | |
Detlev Matthies | German NGI | DFN | |
Dorine Fouossong | France NGI |