Educause Security Discussion mailing list archives

Re: Software for Tracking Security Incidents

From: "Pace, Guy" <gpace () CIS CTC EDU>
Date: Wed, 28 Mar 2007 11:10:32 -0700

There is also RT: Request Tracker from Best Practical Solutions, LLC
(Somerville, Mass.). It is an open source project that has been around
since about 1999 and is pretty mature. There is an Incident Response
add-on, but some like it and some don't. Most just use the RT as it
comes and are very pleased with it, its capabilities and flexibility. Of
course, the price is right. We plan to implement this. 


Guy L. Pace, CISSP
Security Administrator
Center for Information Services (CIS)
3101 Northup Way, Suite 100
Bellevue, WA 98004
425-803-9724

gpace () cis ctc edu


-----Original Message-----
From: Steve Brukbacher [mailto:sab2 () UWM EDU] 
Sent: Wednesday, March 28, 2007 10:54 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Software for Tracking Security Incidents

We're looking at customizing something like OTRS which is an open source
PHP based ticket tracking product.
http://otrs.org/

There was a product offered by Purdue called CIRDB which is no longer
being developed due to loss of funding: This seemed quite popular and
useful...
https://cirdb.cerias.purdue.edu/

There is a commercial product from a London company called QCC we are
doing a webex demo on next week called SID, but it is REALLY expensive. 
They have yet to get a school on board but they have priced themselves
out of the market. Were this to change, it might be worth considering.

Their website:
http://www.qccis.com/content.php?section=secureincidentdatabase

Their Flash demo
http://www.qccis.com/sid/online_demo/Loader.swf

We're probably going to get a local programmer to customize OTRS to do
what we need it to do which is take in data from divergent sources and
turn them in to incidents and allow for easy reporting and allow for
manual tickets to be opened.


--
Steve Brukbacher, CISSP
University of Wisconsin Milwaukee
Information Security Coordinator
UWM Computer Security Web Site
www.security.uwm.edu
Phone: 414.229.2224



Brenda B Gombosky wrote:

What is everyone using to track their incidents?  Does anyone know of

commercial product?
 
 
Brenda B. Gombosky, CISSP, CHSP
Director, Information Technology
University of Louisville
Miller IT Center, Room 109
Louisville, KY 40292
(502)852-5037
(502)419-6689

Current thread:

Software for Tracking Security Incidents Brenda B Gombosky (Mar 28)
- <Possible follow-ups>
- Re: Software for Tracking Security Incidents Steve Brukbacher (Mar 28)
- Re: Software for Tracking Security Incidents Pace, Guy (Mar 28)
- Re: Software for Tracking Security Incidents Rick Coloccia (Mar 28)
- Re: Software for Tracking Security Incidents Bill Kyle (Mar 28)
- Re: Software for Tracking Security Incidents Everett, Alex (Mar 28)
- Re: Software for Tracking Security Incidents Matthew Keller (Mar 28)
- Re: Software for Tracking Security Incidents James Moore (Mar 28)
- Re: Software for Tracking Security Incidents James Moore (Mar 29)
- Re: Software for Tracking Security Incidents Mclaughlin, Kevin (mclaugkl) (Mar 29)
- Re: Software for Tracking Security Incidents Jonny Sweeny (Mar 29)