02.03.2015

It’s all about the people (and processes)

Security incident management for network operators

Cologne, 19.02.2015 – Detecting incidents and anomalies occurring on networks is crucial to avoid negative impact for daily business. How to detect irregularities and how to react correctly and quickly in order to eliminate those occurrences – this was the topic of the meting of the competence group infrastructure security. Security experts shared their experiences with the participants: Siemens CERT exemplified incident response from a global enterprise perspective and eco e.V. presented the international project Advanced Cyber Defense Center (ACDC), coordinated by eco.





Sebastian Abt moderated the event. After welcoming the guests he gave a brief introduction to the topic Security Incident Management for Network.

Thomas Schreck from Siemens CERT was the first speaker and provided a general overview of his daily work and explained the challenges of he experiences at Siemens as a company where IT plays a key role in every area. A successful CERT needs a combined strategy containing reactive and proactive services and should also focus on long-term resilience. A good team is the key factor that should be supported by automated processes.

The presentation was followed by a coffee break and the participants took the opportunity to exchange views on cyber defense and to share experiences in the IT sector.

How to exchange and distributive threat information on a pan-European level – this was Peter Meyers’ topic, Project Coordinator ACDC at eco e.V. The pilot project Advanced Cyber Defense Center (ACDC), consisting of 28 partners from 14 European states, has been existing since February 2013. It brings together organizations from all areas of the industry and research, and as such takes a holistic approach in the fight against botnets. ACDC has developed an online community portal designed to help CERTs, ISPs, ICT providers and research organisations to share data and solutions, to speed up the detection of botnets and ease the roll-out of innovative approaches across mobile devices and fixed computers.

Food was served at the end of the event and the participants had the chance for individual networking. The event offered space for debate and the speakers were happy to answer any questions from the participants.

More photos can be found here.

The Presentation from Thomas Schreck is available here:
Incident Response from a Global Enterprise Perspective

Information on the presentation by Peter Meyer can be found here:
Advanced Cyber Defense Center (ACDC)

to the Agenda →

It's all about the people (and processes)