EGI/EOSC/UK Security Teams F2F - Abingdon, UK

Europe/London
Abingdon, UK
Sven Gabriel (NIKHEF)
Description

For logistics and further meeting details, check the meeting wiki page.

 

Agenda draft NOT FINAL

Registration
Participants of EGI/EOSC Security meetings
Participants
  • Baptiste Grenier
  • David Kelsey
  • Emanuele Simili
  • Linda Cornwall
  • Matt Doidge
  • Nuno Dias
  • Sven Gabriel
  • +8
    • 09:00 10:30
      Tuesday session 1: Status Update
      • 09:00
        F2F Presentation and EGI updates 20m
        • News or events on EGI since the last F2F.
        • EGI Council approved the service provisioning proposal
        • New OLA for Security Coordination (Apr 2024 - Dec 2026) -> https://docs.google.com/document/d/1sjMGnaSA9itSb1K01Er0Mmh7wPvZNaDBZtYBiwl2C5Y/edit
        • EGI Core Services Perfomance report January 2024 - June 2024 -> https://documents.egi.eu/public/ShowDocument?docid=2324
        • New SURF certificates
        • Infrastructure deploied and/or migrated: Gitlab, EGI relay, CommsChallenge server
        Speakers: Baptiste Grenier (EGI.eu), Sven Gabriel (NIKHEF)
      • 09:20
        Monitoring + Vulnerablility Management 30m

        Present the work done during the last months and the status of the project.

        Speaker: Daniel Kouril (CESNET)
      • 09:50
        Roles and responsibilities in IR 30m

        REF: https://jira.egi.eu/browse/EGIIRTF-93

        Speaker: Daniel Kouril (CESNET)
      • 10:20
        Communication Challenges 10m

        Discuss how non responsive/unreachable sites should be tracked in coordination with EGI Ops.

        Speaker: Pau Cutrina Vilalta
    • 10:30 11:00
      Break 30m
    • 11:00 12:30
      Status Update: Presentation
      • 11:00
        Review first 12 months of the TTT WG 40m
        Speaker: Matt Doidge (Lancaster University)
      • 11:40
        Software vulnerability handling 30m

        15 minute presentation on what we do and ideas, plus 15 mins + discussion
        Status of James Acris on actively sharing the work.

        Speaker: Linda Cornwall (STFC)
      • 12:10
        FedCloud Security 20m
        Speaker: Baptiste Grenier (EGI.eu)
    • 12:30 14:00
      Lunch 1h 30m
    • 14:00 15:30
      Tuesday session 3: Collaborations
      • 14:30
        Status of the collaboration with other communities 10m
        • Presentation of SICURA-LAC and the possible collaborations that have been demonstrated with others such as LAC4.
        • What can we learn from the community that could be useful for EGI? i.e. experience with pDNSSOC, trainings, ...
        Speaker: Pau Cutrina Vilalta
      • 14:40
        Collaboration with VOs 50m
        • Frequent call with VO representatives:
          - It could be a short call every three months (about 30 minutes) where incidents are presented, along with security news, followed by a presentation or discussion on a relevant topic, and concluding with a Q&A or feedback session.
        • VOs security policies and procedures:
          - CMS has developed a "User Account Suspension Policy/Procedure." Other VOs might have similar policies in place or may be interested in seeing how others handle it.
        • Security Survey/Checklist:
          - Coordinated with the VOs.
          - Assess needs and collaboration opportunities based on WLCG policies.
        • Newsletter and security updates
        Speakers: Jose Carlos Luna (CERN), Pau Cutrina Vilalta
    • 15:30 16:00
      Break 30m
    • 16:00 17:00
      Tuesday session 4: Initiatives
      • 16:00
        Training activities 30m

        (EGI webinar, tCSC, EGI Conference etc.) - what are we planning?

        Speaker: Barbara Krasovec (JSI)
    • 09:00 10:30
      Wednesday session 1: Initiatives
      • 09:00
        Review: EGI Security Traceability and logging policy 45m
        • Review of the policy.
        • Initiatives to improve compliance.
        Speakers: Barbara Krasovec (JSI), Pau Cutrina Vilalta
      • 09:45
        Incident Response Workshop Organization 45m
        • Technical training and tool demonstrations.
        • Incident response exercises.
        • Define the scope, small sites vs mature admins
        Speakers: Jose Carlos Luna (CERN), Pau Cutrina Vilalta
    • 10:30 11:00
      Break 30m
    • 11:00 12:30
      Wednesday session 2
      • 11:00
        Security Service Challenge 45m
        • Status update and next steps.
        Speaker: Sven Gabriel (NIKHEF)
      • 11:45
        Cross-Team monthly meeting 30m
        Speaker: David Kelsey (STFC)
    • 12:30 14:00
      Lunch 1h 30m
    • 14:00 15:30
      Wednesday session 3
      • 14:00
        Incident Response Debrief 40m
        Speaker: Baptiste Grenier (EGI.eu)
    • 15:30 16:00
      Break 30m
    • 16:00 16:30
      Wednesday session 4: Summary
      • 16:00
        Summary and recap of actions 30m
        • Show the actions pending of completition in Jira.
        • List all the actions that have been noted during the F2F discussions and create actionable tasks.
        Speaker: Pau Cutrina Vilalta
    • 09:00 10:30
      Joint session 1 1h 30m
      • How to be a CSIRT
    • 10:30 11:00
      Break 30m
    • 11:00 12:30
      Joint session 2 1h 30m
      • DRI update and shared activities
    • 12:30 13:30
      Lunch | EGI/EOSC Close | UK Start 1h
    • 13:30 15:30
      UK Security 1
      • 13:30
        IRIS CSIRT 30m
      • 14:00
        Engagement, skills and training 30m