Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Join The WISE Community will meet for a half-day session at the NSF Cybersecurity Summit  in 2019 in San Diego, California, USA on Tuesday 15th October! 

The day will cover: 

I am sorry to report that we are not able to offer remote participation.

Please join the community mail list (see below).

...

The WISE (Wise Information Security for collaborating EinfrastructuresE-infrastructures) community was born as the result of a first workshop in October 2015. It was agreed then that collaboration and trust is the key to successful information security in the world of federated digital infrastructures for research. WISE is an international community with participants spanning North America, Europe, Asia and Australia.

...

The actual work of WISE is performed in focused focussed working groups, each tackling different aspects of collaborative security and trust. This year we have 3 new working groups which are currently starting their work, two of which will lead sessions during this training event.While many of the working group activities are performed by conference calls and e-mail, experience has shown that we can make very good progress by holding face to face WISE events. These events are held at least twice a year. We have already met once in 2019 in Europe, joint with SIG-ISM, in Kaunas, Lithuania, in April, and we are very grateful to the programme committee and organisers for this WISE training/workshop at the NSF Cybersecurity summit as a second event in 2019, this time in North America.

WISE and Trusted CI

WISE and Trusted CI have agreed a joint statement of collaboration: Trusted CI and WISE share a common goal to support the research mission through the development of appropriate cybersecurity practices. Through close collaboration, the groups will ensure that cybersecurity frameworks, templates, and policies for our international infrastructures for research will grow increasingly aligned and interoperable.”

Target Audience:

We invite security representatives from E-Infrastructures and Large-Scale NSF facilities to participate. This includes operational security individuals and policy makers. Some of the topics will be training sessions with hands-on exercises while others will be The training will take the form of management/planning/brainstorming sessions, to assist the WISE working groups in the production of new template policies and best-practice documents.

Agenda

...

(Tuesday, 15 October 2019):

Table Filter
id1571097393305_-962845958


Time

Item

Description

09:00 PDT

Welcome and Introduction to WISE (David Kelsey)
[Slides]

Introductions. What is WISE all about? What are we working on?

...

09:20

...

Operational Security threat intelligence and communication between Security Operations Centres (SOCs), e.g. use of MISP etc. Part 1

(Romain Wartel and David Crooks)

...

A training session together with hands-on experience.

Introductory slides

Training VM

VM Instructions

The agenda today.

09:10

The Security Communications Challenge Coordination Working Group - joint with GEANT SIG-ISM
(Sigita Jurkynaite)

Slides


10:00Operational security and sharing threat intelligence - part 1 (Romain Wartel)
10:30Coffee
11:00Operational

...

(Romain Wartel, David Crooks and Adam Slagell)

security and sharing threat intelligence - part 2 (Romain Wartel)

11:15

Security for Collaborating Infrastructures - the WISE SCI working group.

* (30mins) WLCG SLATE WG Charter review and survey of concerns (Rob Gardner and Romain Wartel)

Slides
* (30mins) Review of 5 core SLATE "workflows" (Chris Weaver )
* (20mins) Status update on SLATE security policies (Chris Weaver)

Slides
* (10mins) Discuss container image security scanning tools (Jim Basney) [slides]


Trust and policy issues for Edge Services, in particular the SLATE federated operation of science platforms. see https://slateci.io/


Desirable outcomes of this topic (during or after the event):

1. Feedback from WISE on prioritization among the various security policies
2. Feedback from WISE on the workflow risk assessments
3. Input from WISE on any experiences using container image security scanning tools

12:45Wrap-up and next steps (David Kelsey)
13:00Lunch


Meeting glossary:

Image Added

...

A training session together with hands-on experience.

...

Resources:

...