Natasha Stonestreet

1
Natasha Stonestreet

• Tuesday 16th January 2007
• The real benefits of a WARP

2
Overview

• Background
• What are the benefits?
• Future for WARPs

3
Background

• Who are we?
• Why were we interested in WARPs?

4
(No Transcript)
5
Building a WARP 3-phase process

• Add value,
• save resources, improve effectiveness of
  advisories warnings
• Develop community,
• build cooperation and TRUST, through sharing best
  practice advice
• Encourage Sharing
• of (anonymised) incident reports, problems, fixes

6
(No Transcript)
7
FWA Categories
8
Example notification
9
(No Transcript)
10
(No Transcript)
11
402 Advisories since Feb
12
What we did?

• Engaging with users
• Relevant information
• Focused approach
• Larger sharing capacity
• Identify WARP champion at each partner site

13
End User Engagement

• All partners signed up
• Regular meetings with members to review WARP and
  to discuss improvements
• Manage online knowledge store virtual expert
• 2-way relationship - partners providing
  information on incidents vulnerabilities

14
Advice Brokering

• The advice brokering service
• Information Sharing with trusted peers
• Using external source and expertise
• Online system to store and search
• Audit trail/trusted sources
• Shared templates/policies etc..

15
(No Transcript)
16
(No Transcript)
17
(No Transcript)
18
(No Transcript)
19
Knowledge Store

• Real time discussions
• What should be in an SLA
• Problems with a specific supplier
• Does anyone have a Third party agreement
• Migrating on to Kent Connects
• Ive had a subject access request what
  information should I include

20
Advice

• Security portfolio
• Corporate Information security management
• Third party/ Remote access template
• Confidentiality Statement
• Starter/leaver strategies
• User training/Education Awareness program
• Security awareness posters/flyers
• Incident Reporting guidelines/forms
• Records Management policy
• Change control best practices
• Information security policy template
• Antivirus/malicious code guidance policy
  template
• Flexible working guidelines
• User access management guidance
• How to build security in to projects paper
• Memory sticks are they secure?
• Business Continuity template and process
  framework

21
Reporting/Expertise

• Defined process of managing major incidents
• Access to Experts and UNIRAS and GOVCERT and
  other security agencies
• 2-way information flow

22
Benefits

• Reduction in operator time spent searching for
  advisories and warnings approx. 2k p.a.
• Added value to warnings application specific
  information
• Defined process for incident management
• Access to online knowledge store
• Access to security expertise compliance
• Education awareness opportunities

23
ISO/IEC 27001 AND WARP

• Management of Information
• Security Incidents Improvements A.13.2
• Responsibilities and procedures
• Protection against Malicious and Mobile Code
  A.10.4
• Controls against malicious code
• During Employment A.8.2
• Information security awareness, education
  training

• Info Security Infrastructure A.4.1
• Information security coordination
• Contact with authorities
• Contact with special interest groups
• Responding to Security
• Incidents Malfunctions A.13
• Reporting information security events
• Reporting security weaknesses

24
NLAWARP Project
25
Event

• Hands on workshop 25th January 2007
• At the Holiday Inn
• Bloomsbury, London

26
A final thought
"None of us is as smart as all of us." - Phil
Condit
27
Thank you

• Contact Details
• Natasha Stonestreet
• Kent Connects Partnership
• Sessions House
• Maidstone
• ME14 1XQ
• ?     (44) 1622 221147
• ?    natasha.stonestreet_at_kent.gov.uk