Alert.png The wiki is deprecated and due to be decommissioned by the end of September 2022.
The content is being migrated to other supports, new updates will be ignored and lost.
If needed you can get in touch with EGI SDIS team using operations @ egi.eu.

Difference between revisions of "EGI Core activities:2015-bidding Security Incident Response Coordination"

From EGIWiki
Jump to navigation Jump to search
 
(11 intermediate revisions by the same user not shown)
Line 1: Line 1:
{{TOC_right}}  
{{Template:Op menubar}} {{TOC_right}}


'''Go back to the [[Core EGI Activities|activity list]].'''  
{{Core_services_menubar}}
'''Go back to the [[EGI Core Activities Bidding|EGI Core Activities Bidding page]].'''  


*Service name: Security Incident Response Coordination
<br> '''Go back to the [[Core EGI Activities|Core EGI activity list]].'''
*Service category: Operations
*Service type: Coordination


Security Incident Response Coordination is part of Security Coordination service in the EGI.eu coordination function.  
<br>
 
*'''Service component name:''' Security Incident Response Coordination
*'''Service name:''' Security Coordination
*'''Service category: '''Operations
*'''Service type:''' Coordination
 
Security Incident Response Coordination is delivered as part of [[Core EGI Activities#Security_coordination|Security Coordination]]&nbsp; (see [https://documents.egi.eu/secure/RetrieveFile?docid=2170&version=19&filename=EGI.eu-OLA-SecurityCoordination-v1.doc related Operations Level Agreement]) service in the EGI.eu coordination function.  


= Introduction  =
= Introduction  =
Line 15: Line 21:
= Technical description  =
= Technical description  =


This service includes the following components.
This bid <span lang="en" id="result_box" class="short_text"><span class="hps">concerns </span></span>the following components:


== Security Incident Response Coordination  ==
== Security Incident Response Coordination  ==


Coordination of incident response activities in collaboration with the Incident Response Task Force. The primary responsibility for basic incident response and forensics still lies with each NGI, while the EGI Global IRTF will coordinate incident response and information exchange. For complex multi-site incidents and in cases where advanced forensics is needed, the EGI Global IRTF will step in and take an active part, to protect the continued integrity of the EGI infrastructure as a whole. Validation of EGI Global incident response capability is done by coordinating security service challenges that both assess readiness of infrastructure operations and verify adequate traceability features in the software used. This task will also liaise with other CSIRTs via for example TF-CSIRTS and FIRST.
Coordination of incident response activities in collaboration with the Incident Response Task Force. The primary responsibility for basic incident response and forensics still lies with each NGI, while the EGI Global IRTF will coordinate incident response and information exchange. For complex multi-site incidents and in cases where advanced forensics is needed, the EGI Global IRTF will step in and take an active part, to protect the continued integrity of the EGI infrastructure as a whole. This task will also liaise with other CSIRTs via for example TF-CSIRTS and FIRST. EGI Global IRTF coordination needs to be performed in collaboration with the IRTF development activity inside EGI-Engage project. <br>

Latest revision as of 14:47, 6 June 2016

Main EGI.eu operations services Support Documentation Tools Activities Performance Technology Catch-all Services Resource Allocation Security



EGI Core services menu: Services PHASE I Services PHASE II Services PHASE III Bids Payments Travel procedure Performance


Go back to the EGI Core Activities Bidding page.


Go back to the Core EGI activity list.


  • Service component name: Security Incident Response Coordination
  • Service name: Security Coordination
  • Service category: Operations
  • Service type: Coordination

Security Incident Response Coordination is delivered as part of Security Coordination  (see related Operations Level Agreement) service in the EGI.eu coordination function.

Introduction

Security is recognised as an important aspect of e-Infrastructures and requires co-ordination between the EGI participants at various levels, in particular for the prevention and handling of incidents.

Technical description

This bid concerns the following components:

Security Incident Response Coordination

Coordination of incident response activities in collaboration with the Incident Response Task Force. The primary responsibility for basic incident response and forensics still lies with each NGI, while the EGI Global IRTF will coordinate incident response and information exchange. For complex multi-site incidents and in cases where advanced forensics is needed, the EGI Global IRTF will step in and take an active part, to protect the continued integrity of the EGI infrastructure as a whole. This task will also liaise with other CSIRTs via for example TF-CSIRTS and FIRST. EGI Global IRTF coordination needs to be performed in collaboration with the IRTF development activity inside EGI-Engage project.