Reflection on first day and introduction to second day with practical IT security topics.
Information and services offered by the Open CSIRT Foundation (OCF). Introduction to Security Incident Management Maturity Model (SIM3) and its new online tool.
Wouldn't it be great if management would have an automated checking mechanism to determine if a service is ready to go operational? A tool that checks if the new system or service has performed risk assessment, has a data processing agreement, performed successful penetration test et cetera. We have made such an API and we are now testing it, aiming for taking it in production in January 2020....
Presentation on how vulnerability management is organized and implemented with OpenVAS at University of Münster. Which prerequisites are required? What are the results?
DFN-CERT is the computer emergency response team of German NREN DFN. Presentation of the IT security related services offered by DFN-CERT for its constituents.
Three live demos that show how a hacker can compromise a PC when having physical access to it. Get ready for some live hacking.
Preperation and mitigation of Emotet threat.
Further discussion in groups of 5-7 on the most pressing challenges that came up so far.
Discussion feedback and results
Conclusion and wrap up. Publication of workshop results. Next meeting as pre-congress workshop at annual EUNIS conference in Helsinki (June, 08.-12.2020).