Security Coordination in EGEE

Because of the distributed nature of the Grid, the coordination of the security operations needs to involve different teams and people.

1.  Project Level
   

   At the level of the project, the OSCT (Operational Security Coordination Team) provides an operational response to security threats against the EGEE infrastructure. It mainly focuses on computer security incidents handling, by providing reporting channels, pan-regional coordination and support.
   The OSCT is lead by the EGEE/LCG Security Officer and includes Security Contacts from each EGEE region.
   One can contact the OSCT and the EGEE/LCG Security Officer through the e-mail address: project-egee-security-support@cern.ch

2.  ROC (NGI) Level
   

   At the level of the ROC (NGI), the ROC_Italy_CSIRT is responsible for the security coordination inside the Italian production Grid.
   It provides support to the sites in case of security incident and acts as interface with the OSCT.
   The ROC Security Officer is a member of the ROC_Italy_CSIRT and is the contact for the ROC at the project level and inside the OSCT.
   One can contact the ROC_Italy_CSIRT and the ROC Security Officer through the e-mail address: grid-security@infn.it

3.  Site Level
   

   At the level of each site, two contacts MUST be defined:
   Site CSIRT : A group of people responsible for the security incident response on grid resources. It MUST exist in each grid site and SHOULD include at least one Grid Site Manager.
   Site Security Contact : A single reference person who is responsible for the security coordination on site grid resources. It MUST exist at each site and MUST be a member of the Site CSIRT.
   Site CSIRTS and Site Security Contacts are published, site by site, on the GOCDB.
   

Relevant Policy Documents

The mandate to provide reccomendations and policies to both WLCG and EGEE in matter of security is given to the Joint Security Policy Group (JSPG).

This is the list of the main security policy documents adopted within the EGEE project and endorsed by IGI.

1. Egee Security Policies
   Catch-all document which presents all the adopted EGEE security policies developed and maintained by the JSPG
2. Grid Acceptable Use Policy
   The purpose of this document is to lay down the rules governing the use of LCG/EGEE resources.
3. Site Registration Policy
   Steps for Resource Administrators in a candidate new Grid site to properly become part of the infrastructure by communicating its security information and other necessary data.
4. Grid Site Operations Policy
   This document describes the conditions that have to be agreed during registration and pariticipation of a Site in the Grid
5. Audit Requirements Policy
   This policy defines the minimum requirements for traceability of actions on Grid Resources and Services as well as the production and retention of security related logging in the Grid
6. Security Incident Response Policy
   This document describes the policy and the responsibilities for handling security incidents affecting the Grid.
7. IMPORTANT!! Incident Response Procedure