EGI Federation Home
About
EGI Foundation
EGI Federation
EGI Infrastructure
EGI Community
EGI Digital Innovation Hub
Foundation Team
Frequently Asked Questions
Services
Services for Research
Services for Business
Services for Federation
Solutions
Use Cases
Success Stories
EGI for Data Spaces
EGI for EOSC
Projects
ENVRI-Hub NEXT
EOSC Beyond
iMagine
interTwin
SPECTRUM
Project Archive
Resources
EGI on Zenodo
Magazine
Newsletter
Publications
Training Materials
Media Kit
News & Events
News
EGI Conference
Community Events
Trainings & Webinars
Participate
Join the EGI Federation
EGI Access Call
Jobs
Share Your News and Events
Contact Us
Updated 06/05/2024

EGI Cybersecurity Report 2023 Highlights: Increased Collaboration and Improved Security Posture

Baptiste Grenier
Baptiste Grenier
Senior Service Delivery Officer, Information Security Manager

The EGI Computer Science Incident Response Team (EGI CSIRT) is pleased to announce the publication of its 2023 Cybersecurity Report. This report highlights the team's efforts to strengthen cybersecurity across the EGI infrastructure through collaboration, improved incident response, and proactive security measures.

"In 2023, we made significant steps to strengthen global collaboration to combat cyber threats," said Pau Cutrina Vilata, CERN, a member of the EGI CSIRT. "By expanding our partnerships beyond the Worldwide LHC Computing Grid (WLCG) to include research institutions, educational centres, and National Research and Education Networks (NRENs), we have enhanced our ability to respond swiftly to emerging threats."

The report details various security incidents throughout 2023, including credential leakage, unauthorised access attempts, impersonation attacks, and software vulnerabilities. Each incident description is accompanied by a detailed analysis and valuable lessons learned, providing EGI sites with actionable insights to improve their security posture.

"The learnings from these incidents have been instrumental in shaping our security strategy for 2024," said Pau. "We are committed to building a more resilient and secure EGI ecosystem for the benefit of all our partners."

The EGI CSIRT is actively implementing several initiatives to achieve this goal. These initiatives include:

  • Enhanced documentation and training: The creation of comprehensive security resources, such as the "Server Management Guidelines" available on the EGI Confluence page, to guide secure infrastructure configuration and forensic investigations.
  • Proactive security measures: Promoting the adoption of advanced security tools, delivering best practice presentations, and offering consultations on security-related issues.
  • Community engagement: Fostering stronger collaboration and information sharing within the EGI community to collectively improve cybersecurity across all member organisations.

"The EGI CSIRT is dedicated to ensuring a secure and trusted environment for scientific research across Europe," explained EGI Director Tiziana Ferrari. "We encourage all EGI federation members and users to familiarise themselves with the security policies and resources provided by EGI CSIRT and accessible through the EGI CSIRT website. They provide very valuable insights and guidance."

EGI remains committed to continuously improving its security posture and ensuring the integrity of its critical infrastructure and services.

Contact: security-requests@egi.eu

CSIRT website: https://csirt.egi.eu/

Read more

EGI CSIRT

Computer Security Incident Response Team

EGI CSIRT gets certified again

Discover more about the enduring certification of EGI-CSIRT

January 20, 2023