• EGI.eu
  • EGI.eu projects
• EGI-InSPIRE
  • Governance
  • Activity
  • Deliverables & Milestones
  • Project metrics
  • Templates
  • Gender Action Plan
• National Grid Initiatives
  • NGI International Liaisons
• Strategy & Policy
  • Policy groups
• People
• EGI in Europe
• Glossary
• Jobs
• FAQ
• Contacts
• Intranet

EGI Computer Security Incident Response Team

Chair

Mingchao Ma

EGI Security Officer
STFC Rutherford Appleton Laboratory (UK)
mingchao.ma@stfc.ac.uk

Description

The EGI Computer Security and Incident Response Team (EGI CSIRT) is a security team aimed at coordinating the operational security activities in the infrastructure, in particular the response to security incidents. The EGI CSIRT ensures the coordination with the NGIs and if applicable with NREN CSIRTs and security teams of peer grids. In addition, the EGI CSIRT acts as a forum to combine efforts and resources from the NGIs in different areas, including grid security monitoring, security training and dissemination, and improvements in responses to incidents.

Main tasks   

The EGI CSIRT security team is organised in the following groups:

• Incident Response Task Force (IRTF): Handles day to day operational security issues and coordinate Computer-Security-Incident-Response across the infrastructure.

• Security Drills Group (SDG): Designs and implement realistic simulation of security incident to test and improve incident response capabilities of the project.

• Security Monitoring Group (SMG): Develops, deploys and maintains security monitoring tools.

• Training and Dissemination Group (TDG): Raises security awareness and improve security for system administrators by providing security training and best practices.

Resources

• EGI CSIRT wikipage

• Terms of reference