Alert.png The wiki is deprecated and due to be decommissioned by the end of September 2022.
The content is being migrated to other supports, new updates will be ignored and lost.
If needed you can get in touch with EGI SDIS team using operations @ egi.eu.

Difference between revisions of "EGI CSIRT:IRTF"

From EGIWiki
Jump to navigation Jump to search
(Deprecate page, content moved to CSIRT space in confluence)
 
(13 intermediate revisions by 4 users not shown)
Line 1: Line 1:
{{egi-csirt-team-header|Incident Response Task Force}}
{{egi-csirt-team-header|Incident Response Task Force}}
<!--{{New-Egi-csirt-header}}-->
{{DeprecatedAndMovedTo|new_location=https://confluence.egi.eu/display/EGIBG/CSIRT+IRTF}}
== Objective ==
Handle day to day operational security issues and coordinate Computer-Security-Incident-Response across the EGI infrastructure.
== Tasks ==
* Replace [https://twiki.cern.ch/twiki/bin/view/LCG/OSCT OSCT-DC]
* Swift response to any reported computer security incident affecting EGI infrastruture
* Security Incident Management
** Existing communication channel (mail list/security wiki) migration
** New communication channel (if needed) setup
** Incident response tools development, evaluation and adaptation
** Incident handling procedures update/maintainence
* Adapt the current EGEE computer security incident response procedures to EGI framework.
* Establish addtional operational and/or escalation procedures when required
** a procedure to suspend a site from the EGI infrastructure
** a procedure and agreed criteria to ban (blacklist) a user, a group of users and/or a VO
* vulnerability assessment
** Regularly monitor vulnerability databases
** Assess impact of vulnerabilities on the EGI infrastructure
** Advise the project mitigation solutions
 
== Persons ==
=== Coordinator ===
* Leif Nixon from NGI_NDGF
 
=== Volunteers ===
{| {{egi-table}} class="sortable"
! Name !! NGI !! Home Organization !! Effort Avalible (PM)
|-
|Leif Nixon ||-  || NDGF ||
|-
|Ake Sandgren ||- || NDGF HPC2N ||
|-
|Daniel Kalici (for Malware Analysis) ||-   || NDGF ||
|-
|Daniel Kouril ||-  || CESNET ||
|-
|Michal Prochazka ||-||   CESNET ||
|-
|Dorine Fouossong || France NGI || 
|-
|David O'Callaghan || Ireland NGI || TCD
|-
|Mingchao Ma || UK NGI || STFC - RAL
|-
|Christos Triantafyllidis || Greek NGI ||  
|-
|Ursula Epting || German NGI || KIT-GridKa
|-
|Tobias Dussa || German NGI || KIT-CERT
|-
|Michael Hausding || Switzerland NGI || SWITCH
|-
|Carlos Fuentes || Spanish NGI || RedIris ||
|-
|Sven Gabriel || Dutch NGI || NIKHEF ||
|-
|Nuno Dias ||Portugal NGI || LIP ||
|-
|Adam Smutnicki || Polish NGI || WCNS ||
|-
|}    
     
Vulnerability assessment (part of incident response task force)
{| {{egi-table}} class="sortable"
!Name  !! NGI !! Home Organization !! Effort Available (PM)
|-
|Leif Nixon ||- ||  NDGF ||
|-
|Michael Hausding || Switzerland NGI || SWITCH
|-
|Xander Jansen || Dutch NGI || SURFcert
|-
|Detlev Matthies || German NGI || DFN
|-
|Dorine Fouossong || France NGI||
|-
|}

Latest revision as of 15:23, 20 October 2021