Educause Security Discussion mailing list archives
Results of a Very short survey on IR tracking systems - http://www.surveymonkey.com/s.asp?u=404471987327
From: "H. Morrow Long" <morrow.long () YALE EDU>
Date: Wed, 14 Jun 2006 10:48:13 -0400
On Apr 5, 2006, at 5:36 PM, H. Morrow Long wrote:
If you have a few seconds please take my very short survey on IR tracking systems: http://www.surveymonkey.com/s.asp?u=404471987327 I'll make the final results available
Summary: For incident tracking, out of 83 higher ed respondents: 28% use RT, 18% use Remedy, 18% use a homegrown solution, 10% use RTIR, 10% use an IMAP folder, 9% use a text file, 7.5% a Word doc, 4 % use AIRT, 6% use a spreadsheet, 3% use an Access database, 3% a MySql database and 24% use a different solution from the above. Details: 1. Are you tracking security incidents using a software program? Response % Histogram (1/2 Percentage Scale) ---------- -------------------------------- Yes 73.5% 61 ************************************* No 26.5% 22 ************* Total Respondents 83 (skipped this question) 1 2. IR Tracking software What software package are you using to track incidents? Several open source and commercial bug tracking and trouble ticket systems are listed as well as a POP mail accounts, an IMAP folder (shared or non-shared), a spreadsheet, text file, document or database. Response % Histogram (1/2 Percentage Scale) ---------- -------------------------------- Aegis Defect Tracking - (Hallogram Publishing) 0% 0 AIRT: Application for Incident Response Teams (SourceForge) 4.5% 3 ** CIRDB - Purdue Cerias Incident Response Database 0% 0 Essential Incident Master - Environmental Support Solutions 0% 0 GNATS / GNATSWEB - GNU Project 0% 0 GSS IssueTrak -- Global Support Software 0% 0 Jitterbug - Samba (Currently suspended) 0% 0 OTRS - Open Ticket Request System 0% 0 RT - Request Tracker (Best Practical) 28.4% 19 *************** RTIR - Request Tracker for Incident Response (Best Practical) 10.4% 7 ***** Remedy - Remedy Action Request System 17.9% 12 ********* Visual Intercept - Elsinore Technologies 0% 0 POP mail account(s) 3% 2 * IMAP folder (shared or non-shared) 10.4% 7 ***** Spreadsheet 6% 4 *** Text file 9% 6 **** Word document 7.5% 5 *** Access database 3% 2 * DBase III 0% 0 MySQL * 3% 2 Custom/homegrown software solution 17.9% 12 ********* Other (please specify - see appended) 23.9% 16 ************ Total Respondents 67 (skipped this question) 17 3. Is your IR ticketing/tracking system shared with other IT groups (help desk, etc.)? Response % Count Histogram (1/2 Percentage Scale) ---------- ----- ------------------------- Yes 42.1% 32 ********************* No 51.3% 39 ************************* Other 6.6% 5 *** (see appended) Total Respondents 76 (skipped this question) 8 ------------------------------------------------------------------------ -- Question #2 Addendum -- Open-Ended Results Detail Other category of IR systems 1. Helpdesk system (TrackIT) - not used to track detail, just assign a tracking number open/close timestamps, and personnel involved. 2. Looking at RTIR 3. Track-IT (Blue Ocean) 4. GWI c.Support 5. None 6. Standard Helpdesk Ticket System: Service Center by Peregrine 7. JIRA from Atlassian Software 8. Snitz Forum 9. Service Center 10. RightNow Service and a homegrown system 11. Footprints (customized project) from Unipress.com 12. Lotus Notes Database 13. Bugzilla 14. Assyst (Axios.com) for "routine" cases. High-sensitivity cases handled within shared-private folder documents. 15. HEAT 16. Infra Enterprise Solutions Question #3 Addendum -- Open-Ended Results Detail Is your IR ticketing/tracking system shared with other IT groups (help desk, etc.)? 1. Shared between multiple security groups 2. Does not exist 3. Same (small) group 4. helpdesk can see selected data fields via a backend web interface 5. partially, via RT # # #
Current thread:
- Results of a Very short survey on IR tracking systems - http://www.surveymonkey.com/s.asp?u=404471987327 H. Morrow Long (Jun 14)