Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security Services Agenda Overview of HEAnet security services HEAnet CERT (Computer Emergency Response) Anti-Spam RBL (Real time blacklist service) HEAnet.

Published byHomer Doyle Modified over 8 years ago

Similar presentations

Presentation on theme: "Security Services Agenda Overview of HEAnet security services HEAnet CERT (Computer Emergency Response) Anti-Spam RBL (Real time blacklist service) HEAnet."— Presentation transcript:

1 Security Services Agenda Overview of HEAnet security services HEAnet CERT (Computer Emergency Response) Anti-Spam RBL (Real time blacklist service) HEAnet TCS ( Certificate Service ) HEAnet Vulnerability Scanning service Security Auditing Questions ?

2 Overview Internal and External security resources HEAnet Security Team Aidan – aidan.carty@heanet.ieaidan.carty@heanet.ie Robert - robert.gallagher@heanet.ierobert.gallagher@heanet.ie WebSite http://www.heanet.ie/security Typical projects. Firewalls, Patching, VPN e.g DR-IDP, Auditing new services, attacks against HEAnet infrastructure. Security advice to clients (e.g. Security appliance tenders ) and providing security based services. Liaising with other CERT teams, NRENs and Government departments. Security Workshops and Training

3 HEAnet CERT Provides Incident Response, support and advice to institution IT department Incidents include DDOS, Malware, Copyright and general AUP issues The HEAnet CERT is in conjunction with JA.net CSIRT

4 Anti-spam service Real-time IP lookup service for institution Email servers. Based on DNS lookups of “bad” IP addresses Uses commercial vendors SpamHaus.org and TrendMicro.com Significant reduction in spam (IP based, email not even processed) Use beyond email, general defense against botnets

5 TCS - Certificates service Usage categories include: Servers, Web applications and network devices. Code Signing Certificates for Applications Personal Email certificates eScience (High Performance Computing groups) TCS service uses a self service portal. ( Currently 2,500+ certificates across 45 clients, with 120+ users ) Available to any individuals nominated by IT department Provide a range of no-cost SSL certificates, signed by leading CA - Comodo

6 Vulnerability Scanning A web based vulnerability scanning service using the commercial version of Outpost24 Scanning of institution networks and a view from outside. Ongoing Reports, Metrics and Deltas Internal Scanning Appliance for Campus LAN Framework Agreement for large number of IPs and PCI compliance checking Offerred to IT department

7 Security Auditing Typical engagements Auditing of infrastructure (servers, routers, firewalls) Auditing of Web Applications (Web farm, Internal applications) Auditing of Virtualisation Environments Chargeable service An on-site security audit of HEAnet client’s infrastructure or applications, including documentation, vulnerability assessment and security recommendations.

8 http://www.heanet.ie/security Questions ?

Download ppt "Security Services Agenda Overview of HEAnet security services HEAnet CERT (Computer Emergency Response) Anti-Spam RBL (Real time blacklist service) HEAnet."

Similar presentations

Approaches to meeting the PCI Vulnerability Management and Penetration Testing Requirements Clay Keller.

Approaches to meeting the PCI Vulnerability Management and Penetration Testing Requirements Clay Keller.
The Whole/Hole of Security Public (DoD) v. Corporate Carl Bourland US Army Judge Advocate Generals Corps.

The Whole/Hole of Security Public (DoD) v. Corporate Carl Bourland US Army Judge Advocate Generals Corps.
The Approach to Security in CLRC Gareth Smith With acknowledgements to all the members of the CLRC Computer Network and Security Group, especially Trevor.

The Approach to Security in CLRC Gareth Smith With acknowledgements to all the members of the CLRC Computer Network and Security Group, especially Trevor.
Zombie or not to be: Trough the meshes of Botnets - Guillaume Lovet AVAR 2005 Tianjin, China.

Zombie or not to be: Trough the meshes of Botnets - Guillaume Lovet AVAR 2005 Tianjin, China.
© 2008 McAfee, Inc. “Endpoint” Security Defining the endpoints and how to protect them.

© 2008 McAfee, Inc. “Endpoint” Security Defining the endpoints and how to protect them.
Know the Client Own the Problem Share the Solution The 2005 Case for Information Technology Security October 14, 2004.

Know the Client Own the Problem Share the Solution The 2005 Case for Information Technology Security October 14, 2004.
ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.

ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.
(Geneva, Switzerland, September 2014)

(Geneva, Switzerland, September 2014)
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company www.jblearning.com All rights reserved. Security Policies and Implementation Issues.

© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company All rights reserved. Security Policies and Implementation Issues.
PCI's Changing Environment – “What You Need to Know & Why You Need To Know It.” Stephen Scott – PCI QSA, CISA, CISSP

PCI's Changing Environment – “What You Need to Know & Why You Need To Know It.” Stephen Scott – PCI QSA, CISA, CISSP
Network Security and Personally Managed Computers Jordan K. Wiens Copyright Jordan K. Wiens 2004.

Network Security and Personally Managed Computers Jordan K. Wiens Copyright Jordan K. Wiens 2004.
IP Blacklisting Causes & Solution Marcus Low, R&D Director InternetNow International Sdn Bhd.

IP Blacklisting Causes & Solution Marcus Low, R&D Director InternetNow International Sdn Bhd.
Security Guidelines and Management

Security Guidelines and Management
PCM2U Presentation by Paul A Cook IT SERVICES. PCM2U Our History  Our team has been providing complete development and networking solutions for over.

PCM2U Presentation by Paul A Cook IT SERVICES. PCM2U Our History  Our team has been providing complete development and networking solutions for over.
Ferst Center Incident Incident Identification – Border Intrusion Detection System Incident Response – Campus Executive Incident Response Team Incident.

Ferst Center Incident Incident Identification – Border Intrusion Detection System Incident Response – Campus Executive Incident Response Team Incident.
Website Hardening HUIT IT Security | Sep 30 2011.

Website Hardening HUIT IT Security | Sep
CS426Fall 2010/Lecture 361 Computer Security CS 426 Lecture 36 Perimeter Defense and Firewalls.

CS426Fall 2010/Lecture 361 Computer Security CS 426 Lecture 36 Perimeter Defense and Firewalls.
Information Security– SNO International Zanzibar, Tanzania Joe Beaulac, Sr. Manager – Cyber Defense Center & Risk/Vulnerability Management 23 September.

Information Security– SNO International Zanzibar, Tanzania Joe Beaulac, Sr. Manager – Cyber Defense Center & Risk/Vulnerability Management 23 September.
Dell Connected Security Solutions Simplify & unify.

Dell Connected Security Solutions Simplify & unify.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Identifying Application Impacts on Network Design Designing and Supporting Computer.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Identifying Application Impacts on Network Design Designing and Supporting Computer.

Similar presentations

Ads by Google