incident response

20 December 2018 at 1:46pm

Incident Response Triage – Final steps

Julian Fort
incident response
#security
CSIRT
Incident Response Triage - Eradication, Recovery and Lessons Learned This is part two of a two-part blog set covering an overview of the Incident Response life-cycle. In response to an incident, the next life-cycle steps that follow the containment stage are the remediation steps; eradication of the threat, recovery of systems and lessons learned. This second article focuses on each of these stages, highlighting the important areas to consider within the remaining life-cycle steps.
Read more
12 December 2018 at 1:34pm

Explorations in GDPR

Andrew Cormack
Data Protection Regulation
incident response
Learning Analytics
Intelligent Campus
well-being
With the GDPR having now been in force for more than six months, my talk at this week's EUNIS workshop looked at some of the less familiar corners of the GDPR map. In particular, since EUNIS provided an international audience, I was looking for opportunities to find common, or at least compatible, approaches across the international endeavours of education and research. Topics covered: What is a University? Network and Information Security; Research; Learning Analytics; Intelligent Campus; and Wellbeing.
Read more
19 November 2018 at 2:34pm

Information Sharing and GDPR

Andrew Cormack
incident response
Data Protection Regulation
I've been asked a number of times whether GDPR affects the sharing of information between incident response teams. This slideset discusses how GDPR encourages sharing to improve security, and provides a rule of thumb for deciding when the benefit of sharing justifies the data protection risk.
Read more
12 November 2018 at 11:49am

Assessing the DP Impact of Jisc Security Services

Andrew Cormack
Data Protection Regulation
#Jiscsec
incident response
penetration testing
At last week's Jisc Security Conference I presented a talk on how we've assessed a couple of Jisc services (our Security Operations Centre and Penetration Testing Service) from a data protection perspective. The results have reassured us that these services create benefits rather than risks for Jisc, its customers and members, and users of the Janet network. This post links together:
Read more
12 November 2018 at 10:41am

Incident Response Triage

Julian Fort
incident response
CSIRT
#security
Incident Response Triage  – identifying, scoping and containing an incident
Read more
30 October 2018 at 3:44pm

Incident Statistics for September 2018

James Cleeter
Janet CSIRT
incident response
incident statistics
These statistics only relate to information collated by Janet CSIRT and do not provide an accurate sample of security activity across the research and education sectors. The figures are frequently more closely correlated to the activity of CSIRT and our detection of events rather than their actual rates of incidence. For example: a successful investigation by researchers into a botnet will cause that month's malware figures to rise even though the malware may have been active in previous months.
Read more
30 October 2018 at 3:35pm

Incident Statistics for August 2018

James Cleeter
Janet CSIRT
incident response
incident statistics
These statistics only relate to information collated by Janet CSIRT and do not provide an accurate sample of security activity across the research and education sectors. The figures are frequently more closely correlated to the activity of CSIRT and our detection of events rather than their actual rates of incidence. For example: a successful investigation by researchers into a botnet will cause that month's malware figures to rise even though the malware may have been active in previous months.
Read more
15 October 2018 at 1:48pm

Incident Statistics for July 2018

James Cleeter
incident response
incident statistics
Janet CSIRT
These statistics only relate to information collated by Janet CSIRT and do not provide an accurate sample of security activity across the research and education sectors. The figures are frequently more closely correlated to the activity of CSIRT and our detection of events rather than their actual rates of incidence. For example: a successful investigation by researchers into a botnet will cause that month's malware figures to rise even though the malware may have been active in previous months.
Read more
15 October 2018 at 1:35pm

Incident Statistics for June 2018

James Cleeter
incident statistics
incident response
Janet CSIRT
These statistics only relate to information collated by Janet CSIRT and do not provide an accurate sample of security activity across the research and education sectors. The figures are frequently more closely correlated to the activity of CSIRT and our detection of events rather than their actual rates of incidence. For example: a successful investigation by researchers into a botnet will cause that month's malware figures to rise even though the malware may have been active in previous months.
Read more
4 October 2018 at 1:20pm

ePrivacy Regulation: better news for online security

Andrew Cormack
ePrivacy Regulation
incident response
Some good news from the draft ePrivacy Regulation.
Read more
Subscribe to incident response