Presentation is loading. Please wait.

Presentation is loading. Please wait.

Market Engagement – security update

Published byBenjamin Foster Modified over 6 years ago

Similar presentations

Presentation on theme: "Market Engagement – security update"— Presentation transcript:

1 Market Engagement – security update
16-June 2016 Tony Beadle

2 Security Workstream Update
Progress to date Obligation updates Outstanding actions Next dates

3 Progress to date - Topics discussed
Web proxy malware scanning Industry standard offerings not suitable for NHS anti-malware# Netflow generation and transmission Need visibility of all HSCN WAN traffic Need detailed info on impact of netflow generation and transmission DLN-based netflow collection point requirement removed Internet firewall automated rule distribution Standard request Industry to supply preferred technical update mechanism

4 Progress to date - Topics discussed (cont)
DNS design Central DNS to perform recursive lookups no problem [NSI] TCP/53 blocked at Internet gateways (except recursive resolvers) Supplier security compliance model Key CAS-T elements to be used Suppliers to self-assert compliance Authority to reserve right of audit (with sanctions) Connection Agreement Aggregators Keen to participate as providers, invited to sessions

5 Security obligations updates
Updated text as per meeting: SO1, SO2, SO4, SO5, SO12 updated SO3 removed Available for review and circulation

6 Outstanding actions Paper on netflow impact of infrastructure
Industry preferred mechanism for updating firewalls automatically [due Fri 10th Jun] Additional obligation required for FW update mechanism and SLA [to create at workshop on 30th]

7 Next dates June 21st – technical & security workshop
Security compliance standards to be discussed June 30th – security workshop (full day) Expected to be last significant security session Obligations to be updated following this session

8 SO1 Old The Supplier shall generate IPFIX data from devices at the edge of the HSCN WAN (CPE) in support of the SOC Requirements for managing security across the HSCN. New The supplier shall generate IPFIX/Netflow data to describe all network traffic passing across the HSCN WAN (e.g. full netflow of the WAN interface of the CPE)

9 SO2 Old The supplier shall forward the IPFIX data in real-time to a DLN-based collection facility New The supplier shall forward the IPFIX/Netflow data in real-time to the HSCIC network SOC collector

10 SO4 Old The supplier shall perform active network monitoring to assist with the identification of traffic (such as Denial of Service attacks) that could cause availability issues over the network. Alerts of this identification shall be passed to the HSCIC SOC. New The supplier shall perform active network monitoring to assist with the identification of traffic from the Internet (such as Denial of Service attacks) that could cause availability issues over the network. Alerts of this identification shall be passed to the HSCIC SOC.

11 SO5 Old The supplier shall establish a two-way data flow and information sharing between their SOC and the HSCIC SOC, to provide visibility of network alerts and incidents, anomalous traffic patterns, intelligence and other incidents in progress across the HSCN estate New At a process level, the supplier shall establish a two-way data flow and information sharing between their SOC and the HSCIC SOC, to provide visibility of network alerts and incidents, anomalous traffic patterns, intelligence and other incidents in progress across the HSCN estate. Toolset integration is not expected

12 SO12 Old The supplier shall identify any attack on their HSCN infrastructure, and take suitable action to mitigate the attack, and inform the HSCIC SOC New The supplier shall deploy suitable controls to detect attacks on their infrastructure used to supply service to HSCN, and take suitable action to mitigate the attacks. HSCIC SOC shall be informed of successful attacks and significant unsuccessful attacks.

Download ppt "Market Engagement – security update"

Similar presentations

World Class Standards Smart Grids ETSI Strategic Topic Philippe Lucas © ETSI 2010. All rights reserved ETSI Smart Grid workshop, June 14th 2010.

World Class Standards Smart Grids ETSI Strategic Topic Philippe Lucas © ETSI All rights reserved ETSI Smart Grid workshop, June 14th 2010.
RiT PatchView Solution

RiT PatchView Solution
Data Security in Local Networks using Distributed Firewalls

Data Security in Local Networks using Distributed Firewalls
© 2014 Level 3 Communications, LLC. All Rights Reserved. Proprietary and Confidential. Polycom event Security Briefing 12/03/14 Level 3 Managed Security.

© 2014 Level 3 Communications, LLC. All Rights Reserved. Proprietary and Confidential. Polycom event Security Briefing 12/03/14 Level 3 Managed Security.
IT-security in the Ubiquitous Computing World Chris Kuo, CISSP, CISA Acer eDC (e-Enabling Data Center) Acer Inc. 2007/3/27.

IT-security in the Ubiquitous Computing World Chris Kuo, CISSP, CISA Acer eDC (e-Enabling Data Center) Acer Inc. 2007/3/27.
Security Services Agenda Overview of HEAnet security services HEAnet CERT (Computer Emergency Response) Anti-Spam RBL (Real time blacklist service) HEAnet.

Security Services Agenda Overview of HEAnet security services HEAnet CERT (Computer Emergency Response) Anti-Spam RBL (Real time blacklist service) HEAnet.
The Charlbury Group. About Us Based in Kidlington, Oxfordshire Independent, specialising in providing IT solutions in the housing and financial sector.

The Charlbury Group. About Us Based in Kidlington, Oxfordshire Independent, specialising in providing IT solutions in the housing and financial sector.
Web Application Firewall (WAF) RSA ® Conference 2013.

Web Application Firewall (WAF) RSA ® Conference 2013.
OV 12 - 1 Copyright © 2013 Logical Operations, Inc. All rights reserved. Network Security  Network Perimeter Security  Intrusion Detection and Prevention.

OV Copyright © 2013 Logical Operations, Inc. All rights reserved. Network Security  Network Perimeter Security  Intrusion Detection and Prevention.
OV 12 - 1 Copyright © 2011 Element K Content LLC. All rights reserved. Network Security  Network Perimeter Security  Intrusion Detection and Prevention.

OV Copyright © 2011 Element K Content LLC. All rights reserved. Network Security  Network Perimeter Security  Intrusion Detection and Prevention.
Alert Logic Provides a Fully Managed Security and Compliance Solution Based in the Cloud, Powered by the Robust Microsoft Azure Platform MICROSOFT AZURE.

Alert Logic Provides a Fully Managed Security and Compliance Solution Based in the Cloud, Powered by the Robust Microsoft Azure Platform MICROSOFT AZURE.
Chapter 4: Implementing Firewall Technologies

Chapter 4: Implementing Firewall Technologies
Operated by Los Alamos National Security, LLC for NNSA U N C L A S S I F I E D Slide 1 Managing Network Threat Information  Giri Raichur, Network Services.

Operated by Los Alamos National Security, LLC for NNSA U N C L A S S I F I E D Slide 1 Managing Network Threat Information  Giri Raichur, Network Services.
Blue Coat Cloud Continuum

Blue Coat Cloud Continuum
Great Sales Presentation

Great Sales Presentation
Copyright © 2006, Oracle. All rights reserved Oracle Web Services Manager.

Copyright © 2006, Oracle. All rights reserved Oracle Web Services Manager.
Barracuda NG Firewall ™

Barracuda NG Firewall ™
IoT Security Part 2, The Malware

IoT Security Part 2, The Malware
Managing Windows Security

Managing Windows Security
CompTIA Security+ Study Guide (SY0-401)

CompTIA Security+ Study Guide (SY0-401)

Similar presentations

Ads by Google