This wiki site will be offline Thursday, Oct 5th, 2023, from 0600 to 0830 in order to upgrade Confluence
NCSA Cybersecurity
Space shortcuts
Child pages
  • NCSA Security Contact Process

Versions Compared

Old Version 6

changes.mady.by.user Unknown User (slagell)

Saved on

compared with

New Version 17

changes.mady.by.user Unknown User (awithers)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.


Panel

Document Name: NCSA Security Contact Process
Version: 1.0
Accountable: Alex Withers
Authors: Alex Withers

Reviewed: June 23, 2021
Approved:  2008


Excerpt

Urgent Priority 

Security Incident or concern that is of a critical nature and requires immediate response. 

  • Examples: Key resources managed by security are down (e.g., bastion hosts or certificate authorities), or a security incident on a production system is in progress.
  1. Send note to security@ncsa.illinois.edu
  2. CC security-pagers@ncsa.illinois.edu
  3. List subject as URGENT! And flag High Priority email flag
  4. Clearly state the issue or concern
  5. Provide your contact information including cell phone for more details

If no response within 10 minutes, contact these people by cell phone in the following order:

...

NCSA has a 24/7/365 operations help desk that can in an emergency direct any security incidents and issues to the appropriate Security Engineers. You can contact the help desk at (217) 244-0710, or email "help ( at ) ncsa.illinois.edu".

Help Desk Instructions

High Priority

Needs to be addressed in a timely manner, i.e., in the next couple hours during business days.

  • Examples: A new user needs access to a system controlled by security, or you think that your laptop or web site may have been compromised.
  1. Send a note

...

  1. to "security ( at ) ncsa.illinois.edu"
  2. Flag the note as High Priority
  3. List Subject as High Priority
  4. Clearly state the issue or need
  5. Provide contact information

...

This reaches the security operations team and the CISO.

Non-emergency

  • Examples: Questions, configuration change request, meeting requests, etc
  1. Send note

...

  1. to "help+security (at) ncsa.illinois.edu"
  2. Clearly state the issue or need
  3. Provide contact information

This creates a ticket for the security operations team.

PGP Key

If you want to encrypt any email to the security team then you can use the NCSA Security Team PGP located here or from the MIT PGP keyserver.

  • PGP keyID: 5574C6BE
  • Key fingerprint = 15CE 01F0 0392 E004 7084 9AF4 D1A5 D4E2 5574 C6BE