Join WISE for a full day session at the NSF Cybersecurity Summit in Alexandria, Virginia, USA on August 21st!
The day will cover:
- Operational Security threat intelligence and communication (SOCs)
- SCI working group (Policy Development Kit, Baseline AUP and EU GDPR)
- Security challenges for high-throughput data transfers
Please join the community mail list (see below) and let us know if you’re coming so that we can plan an evening activity.
The WISE (Wise Information Security for collaborating Einfrastructures) community was born as the result of a first workshop in October 2015. It was agreed then that collaboration and trust is the key to successful information security in the world of federated digital infrastructures for research. WISE is an international community with participants spanning North America, Europe, Asia and Australia.
WISE provides a trusted global environment where security experts from general and research domain-specific Infrastructures can share information on topics such as risk management, experiences about certification processes and threat intelligence. With participants from e-Infrastructures such as EGI, EUDAT, GEANT, EOSC-hub, PRACE, XSEDE, OSG, NRENs and more, the main aim of WISE is to promote best practice in Information Security by developing trust frameworks, template policies and guidelines for e-Infrastructures.
The actual work of WISE is performed in focused working groups, each tackling different aspects of collaborative security and trust. This year we have 3 new working groups which are currently starting their work, two of which will lead sessions during this training event.
We invite security representatives from E-Infrastructures and Large-Scale NSF facilities to participate. This includes operational security individuals and policy makers. Some of the topics will be training sessions with hands-on exercises while others will be management/planning/brainstorming sessions, to assist the working groups in the production of new template policies and best-practice documents.
We propose a full day with the following tentative agenda, combining informational and interactive activities:
Introduction to WISE (David Kelsey)
What is WISE all about? What are we working on? What are the various working groups?
Operational Security threat intelligence and communication between Security Operations Centres (SOCs), e.g. use of MISP etc. Part 1
(Romain Wartel and David Crooks)
Operational Security threat intelligence and communication between Security Operations Centres (SOCs), e.g. use of MISP etc. Part 2
(Romain Wartel, David Crooks and Adam Slagell)
A training session together with hands-on experience.
SCI working group. (Uros Stevanovic and David Kelsey)
A mix of training aimed at assisting CyberInfrastructures to prepare Policies to meet the requirements of SCI version 2 and brain-storming on the new proposed baseline AUP and the approach to EU GDPR
We may be able to compare the WISE/SCI/AARC2 policy kit with other such activities (Trusted CI for example) and see what we can learn from each other.
Security challenges for high-throughput data transfers (Ralph Niederberger)
Working towards a best practices document on issues related to this topic
|19:00||Dinner||Let's aim to eat dinner together somewhere close!|