Difference between revisions of "EGI CSIRT:IRTF"
Jump to navigation
Jump to search
Line 27: | Line 27: | ||
=== IRTF Members === | === IRTF Members === | ||
{| {{egi-table}} | {| {{egi-table}} | ||
! Name !! NGI !! Home Organization | ! Name !! NGI !! Home Organization | ||
|- | |- | ||
|Vincent Brillault || CERN || CERN | |Vincent Brillault || CERN || CERN | ||
|- | |- | ||
|Daniel Kouril || Czech NGI || CESNET | |Daniel Kouril || Czech NGI || CESNET | ||
|- | |- | ||
|Sophie Ferry || France NGI || CEA Saclay | |Sophie Ferry || France NGI || CEA Saclay | ||
|- | |- | ||
|Tobias Dussa || German NGI || KIT-CERT | |Tobias Dussa || German NGI || KIT-CERT | ||
|- | |- | ||
|Sven Gabriel || Dutch NGI || NIKHEF | |Sven Gabriel || Dutch NGI || NIKHEF | ||
|- | |- | ||
|Nuno Dias || Portugal NGI || LIP | |Nuno Dias || Portugal NGI || LIP | ||
|- | |- | ||
|Ian Neilson || United Kingdom NGI || STFC | |Ian Neilson || United Kingdom NGI || STFC | ||
|} | |} |
Revision as of 15:47, 18 December 2015
public team pages| Incident Response Task Force (IRTF) | Security Drills Group (SDG) | Security Monitoring Group (SMG) |
public pages | Mission | Incident reporting | Dissemination | Alerts | Operational notices | Monitoring | Security challenges | Policies | Contacts |
Incident Response Task Force
Objective
Handle day to day operational security issues and coordinate Computer-Security-Incident-Response across the EGI infrastructure.
Tasks
- Swift response to any reported computer security incident affecting EGI infrastruture
- Security Incident Management
- Existing communication channel (mail list/security wiki) migration
- New communication channel (if needed) setup
- Incident response tools development, evaluation and adaptation
- Incident handling procedures update/maintainence
- Establish additional operational and/or escalation procedures when required
- a procedure to suspend a site from the EGI infrastructure
- a procedure and agreed criteria to ban (blacklist) a user, a group of users and/or a VO
- vulnerability assessment
- Regularly monitor vulnerability databases
- Assess impact of vulnerabilities on the EGI infrastructure
- Advise the project mitigation solutions
- Maintain and extend open source intelligence and information exchange with trusted partners
- Gather information about current cyber attack and threats
- Derive monitoring rules applicable to EGI
Persons
Coordinator
- Vincent Brillault from CERN
IRTF Members
Name | NGI | Home Organization |
---|---|---|
Vincent Brillault | CERN | CERN |
Daniel Kouril | Czech NGI | CESNET |
Sophie Ferry | France NGI | CEA Saclay |
Tobias Dussa | German NGI | KIT-CERT |
Sven Gabriel | Dutch NGI | NIKHEF |
Nuno Dias | Portugal NGI | LIP |
Ian Neilson | United Kingdom NGI | STFC |