Educause Security Discussion mailing list archives
Re: Software for Tracking Security Incidents
From: "Pace, Guy" <gpace () CIS CTC EDU>
Date: Wed, 28 Mar 2007 11:10:32 -0700
There is also RT: Request Tracker from Best Practical Solutions, LLC (Somerville, Mass.). It is an open source project that has been around since about 1999 and is pretty mature. There is an Incident Response add-on, but some like it and some don't. Most just use the RT as it comes and are very pleased with it, its capabilities and flexibility. Of course, the price is right. We plan to implement this. Guy L. Pace, CISSP Security Administrator Center for Information Services (CIS) 3101 Northup Way, Suite 100 Bellevue, WA 98004 425-803-9724 gpace () cis ctc edu -----Original Message----- From: Steve Brukbacher [mailto:sab2 () UWM EDU] Sent: Wednesday, March 28, 2007 10:54 AM To: SECURITY () LISTSERV EDUCAUSE EDU Subject: Re: [SECURITY] Software for Tracking Security Incidents We're looking at customizing something like OTRS which is an open source PHP based ticket tracking product. http://otrs.org/ There was a product offered by Purdue called CIRDB which is no longer being developed due to loss of funding: This seemed quite popular and useful... https://cirdb.cerias.purdue.edu/ There is a commercial product from a London company called QCC we are doing a webex demo on next week called SID, but it is REALLY expensive. They have yet to get a school on board but they have priced themselves out of the market. Were this to change, it might be worth considering. Their website: http://www.qccis.com/content.php?section=secureincidentdatabase Their Flash demo http://www.qccis.com/sid/online_demo/Loader.swf We're probably going to get a local programmer to customize OTRS to do what we need it to do which is take in data from divergent sources and turn them in to incidents and allow for easy reporting and allow for manual tickets to be opened. -- Steve Brukbacher, CISSP University of Wisconsin Milwaukee Information Security Coordinator UWM Computer Security Web Site www.security.uwm.edu Phone: 414.229.2224 Brenda B Gombosky wrote:
What is everyone using to track their incidents? Does anyone know of
a
commercial product? Brenda B. Gombosky, CISSP, CHSP Director, Information Technology University of Louisville Miller IT Center, Room 109 Louisville, KY 40292 (502)852-5037 (502)419-6689
Current thread:
- Software for Tracking Security Incidents Brenda B Gombosky (Mar 28)
- <Possible follow-ups>
- Re: Software for Tracking Security Incidents Steve Brukbacher (Mar 28)
- Re: Software for Tracking Security Incidents Pace, Guy (Mar 28)
- Re: Software for Tracking Security Incidents Rick Coloccia (Mar 28)
- Re: Software for Tracking Security Incidents Bill Kyle (Mar 28)
- Re: Software for Tracking Security Incidents Everett, Alex (Mar 28)
- Re: Software for Tracking Security Incidents Matthew Keller (Mar 28)
- Re: Software for Tracking Security Incidents James Moore (Mar 28)
- Re: Software for Tracking Security Incidents James Moore (Mar 29)
- Re: Software for Tracking Security Incidents Mclaughlin, Kevin (mclaugkl) (Mar 29)
- Re: Software for Tracking Security Incidents Jonny Sweeny (Mar 29)