Changes

Jump to: navigation, search

Security/InfoSec

44 bytes added, 02:35, 16 August 2015
s/opsec/infosec/g
=Operations Enterprise Information Security Team=
{{TOC right|limit=2}}
OpSec Infosec assists Mozillians in defining and operating security controls to ensure that data at Mozilla is protected consistently across the organization.
* we help you define the risks around your services and data
* we help projects design and implement security controls
For security incidents, file a bug in Bugzilla under the product/component [https://bugzilla.mozilla.org/enter_bug.cgi?product=Enterprise%20Information%20Security&component=Investigation] or [https://bugzilla.mozilla.org/enter_bug.cgi?product=Enterprise%20Information%20Security&component=Incident].
Our IRC channel is #foxsignal or #security at [irc://irc.mozilla.org/security irc.mozilla.org].
= Members =
=== Description ===
OpSec InfoSec develops and operates MozDef as a service to assist Mozilla projects in defending their operations. Mozilla systems can send events, logs and other data to MozDef to be automatically correlated and consistently treated.
=== What you can do with this service ===
: business hours availability. 1 year data retention.
; Costs
: platform supported by OpSecInfoSec. Subscriber’s handles the cost of provisioning and monitoring the agents on target systems.
: [https://bugzilla.mozilla.org/enter_bug.cgi?product=Enterprise%20Information%20Security&component=MIG&assigned_to=jvehent%40mozilla.com&blocked=896480 request bug]
=== Description ===
[[File:Mig-console.png|right|300px]]
OpSec InfoSec operates a client/server platform to facilitate the investigation of large numbers of systems in parallel. We distribute agents across endpoints of an infrastructure that can be queried in real-time through a central console. This service uses Mozilla InvestiGator (MIG).
=== What you can do with this service ===
* Search through the memory of a live system.
* Search for MAC addresses, IP addresses and connected IPs.
* Verify conformity of a configuration with OpSec InfoSec best practices.
== Service: Test driven systems security ==
: business hours availability. 1 year data retention.
; Costs
: platform supported by OpSecInfoSec. Subscriber’s handles the cost of provisioning and monitoring the agents on target systems.
; Service request
: [https://bugzilla.mozilla.org/enter_bug.cgi?product=Enterprise%20Information%20Security&component=MIG&assigned_to=jvehent%40mozilla.com&blocked=896480 request bug]
: Response within a week.
; Costs
: 30 minutes meeting with OpSecInfoSec.
; Service request
: [https://bugzilla.mozilla.org/enter_bug.cgi?product=Enterprise%20Information%20Security&component=Review request bug]
: Response within a week.
; Costs
: One or more meeting with OpSecInfoSec.
; Service request
: [https://bugzilla.mozilla.org/enter_bug.cgi?product=Enterprise%20Information%20Security&component=Review request bug]
* Go beyond traditional SIEM systems in automating incident handling, information sharing, workflow, metrics and response automation
= Documentation maintained by OpSec InfoSec =
* [https://wiki.mozilla.org/Security/OpSec This page]
* [https://wiki.mozilla.org/Security/Server_Side_TLS Server Side TLS]
Jbryner
Confirm
65
edits
Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/1090355"

Navigation menu