EGI CSIRT / EGI-ACE T7.5 / EOSC-Future T7.5 F2F + Online [June 2023]

Name: EGI CSIRT / EGI-ACE T7.5 / EOSC-Future T7.5 F2F + Online [June 2023]
Start: 2023-06-19T09:00:00+02:00
End: 2023-06-20T15:00:00+02:00
Location: No location set

19 Jun 2023, 09:00 → 20 Jun 2023, 15:00 Europe/Prague

David Groep (Nikhef), David Kelsey (STFC), Sven Gabriel (NIKHEF)

Description

IN DRAFT

DATES AND TIMINGS IN DEVELOPMENT

For logistics and video information see the EGI CSIRT private wiki.

Timings and even the order of topics may change.

Agenda in draft stage

Registration

EGI CSIRT / EGI-ACE Poznan 2023

Monday, 19 June
- Mon, 19 Jun
- Tue, 20 Jun
- 1
  Intro and EOSC+EGI-ACE
  Dave and David
  - Topics as necessary
  - a) Introduction
    
    Speaker: Dr Sven Gabriel (NIKHEF)
  - b) SSC Red-Team status update
    
    Countdown to CMS SSC running, target date still realistic?
    
    Speaker: Sven Gabriel (NIKHEF)
  - c) SSC Blue team briefing
    
    who will be available for the blue team, preparation check list
    
    Speaker: Sven Gabriel (NIKHEF)
- 10:30
  
  Coffee
- 2
  IRTF Debriefings
  
  Debriefings of the incidents since last F2F, Jan 2023
  
  Speaker: Pau Cutrina Vilalta
  - a) IRTF Debriefings
    
    Speaker: Pau Cutrina Vilalta
  - b) IRTF Procedures
    
    Discussion: high sensitive incidents
    
    Speaker: Pau Cutrina Vilalta
  - c) Procedures update
    
    Speaker: Pau Cutrina Vilalta
- 12:00
  
  Lunch
- 3
  Vulnerability Management/Security Monitoring
  
  Updates from SVG, Sec Monitoring
  Vulnerabiliites since last F2F Jan 2023
  Nessus scanning (Baptiste)
  
  Speakers: Baptiste Grenier (EGI.eu), Daniel Kouril (CESNET), Linda Cornwall (STFC)
  - a) SVG Status Update
    
    Current status of SVG, assessment procedure, possible KPIs
    
    Speaker: Linda Cornwall (STFC)
  - b) Monitoring + Vulnerablility Management
    
    Status of Security Monitoring tools
    Discussion Vulnerability Management process.
    KPIs, what are the costs of VM
    
    Speaker: Daniel Kouril (CESNET)
- 15:00
  
  Coffee
- 4
  FedCloud Security
  
  Design of the cloud native soc
  
  Speakers: Aida Palacio (IFCA), David Crooks (STFC)
  - a) FedCloud Security
    
    Projects around security in FedCloud
    Cloud Native SOC etc
    
    Speaker: Palacio Palacio (IFCA)
  - b) Outreach
    
    Status, what to publish, which media, collab with EGI PR
    
    Speaker: Barbara Krasovec (JSI)
  - c) Key Signing
    
    ppgp signing for the people present (physically)
    
    Speaker: Sven Gabriel (NIKHEF)
Tuesday, 20 June
- Mon, 19 Jun
- Tue, 20 Jun
- SSC 23.03
  
  Discussion on the SSC run 23.03
  View from:
  - RedTeam
  - BlueTeam
  
  Goal, what to avoid, do better
  
  Conveners: David Groep (Nikhef), David Kelsey (STFC)
- 11:30
  
  Coffee
- 5
  Training activities/Security Workshop
  - Cloud SOC
  - OIDC
  - Forensics
  - a) ISGC Training
    
    Presentation + Discussion
    
    Speakers: David Crooks (STFC), Sven Gabriel (NIKHEF)
- 12:30
  
  Lunch
- 6
  
  Procedures