---------- Forwarded message ----------<br>From: <b>Jean-Robert Hountomey</b> <<a href="mailto:hrobert@africacert.org">hrobert@africacert.org</a>><br>Date: Monday, June 10, 2019<br>
<div text="#000000" bgcolor="#FFFFFF">
<pre></pre>
<pre>Dear Colleagues,
We will be streaming the meeting. Kindly join the audio conference.
</pre>
<p><span lang="EN-US"><a href="https://isoc.zoom.us/j/504986340" target="_blank">https://isoc.zoom.us/j/<wbr>504986340</a><br>
</span></p>
<pre>CSIRT BASICS
</pre>
<pre>Sunday 09 June 2019
-------------------
14:30 CSIRT BootCamp
16:30 Break
17:00 CSIRT BootCamp
18:30 Dinner
CSIRT Maturity workshop: Stimulating the development and maturity enhancement of CSIRTs.
Monday 10 June 2019
-------------------
08:30 Start of programme
09:00 CSIRT Maturity : introduction
11:00 Break
11:30 CSIRT Maturity : organisational factors
13:30 Lunch
14:30 CSIRT Maturity : human factors
16:30 Break
17:00 CSIRT Maturity : tooling factors
18:30 Dinner
Tuesday 11 June 2019
--------------------
08:30 Start of programme
09:00 CSIRT Maturity : process factors
11:00 Break
11:30 CSIRTs working together: nationally, regionally, worldwide
13:30 Lunch
Pratical CSIRT Case Study: TunCERT
Tuesday 11 June 2019
--------------------
14:30 Opensource tooling
16:30 Break
17:00 Demo: Ransomware Analysis
18:30 Dinner
</pre>
<pre class="MsoNormal"><b><span style="font-size:10.0pt" lang="EN-GB">Title: Incident response workshop by Estonian and French cyber security experts
</span></b><span style="font-size:10pt" lang="EN-GB">
Description – the workshop will focus on the operational, tactical, procedural, legal and communication aspects of incident response. The
experts will deliver sessions covering the whole incident response lifecycle from incident detection through various
escalation levels until the implementation of mitigation measures and post-incident activities. This includes incident response best
practices, workflow, classification, SLAs and team composition/roles along with business impact. Special focus will be dedicated
on internal and external incident communication. The issues pertinent to compliance and supervision, as well as risk management and their role
in incident handling will be covered.</span></pre>
<pre><span style="font-size:10.0pt" lang="EN-GB">Who should attend – technical personnel (system administrators, developers, engineers), incident responders, management level participants,
people involved in communications/PR, law, compliance, business, risk management </span><span style="font-size:10pt"></span> <span style="font-size:10.0pt;font-family:"Courier New"">
</span></pre>
<pre><span style="font-size:10.0pt;font-family:"Courier New""></span></pre>
<pre>Wednesday 12 June 2019
08:30 Start of programme
09:00 Threat landscape, awareness and community building (RIA and ANSSI).
11:00 Break
11:30 Establishing incident response (history and current practice from around the world)
13:30 Lunch
14:30 CSIRT organisation and legal framework: French and Estonian examples
16:30 Break
17:00 Communication (internal, external, communication channels and methods)
18:30 Dinner
Thursday 13 June 2019
08:30 Start of programme
09:00 Incident response taxonomies and escalation paths (Part 1)
11:00 Break
11:30 Incident response: examples from CERT-EE and ANSSI
13:30 Lunch
14:30 Exercises: validating your skills and procedures (RIA)
16:30 Break
17:00 Supervision (RIA)
18:30 Dinner
Friday 14 June 2019
08:30 Start of the Program
09:00 Presentations
11:00 Break
11:30 Team updates
13:30 Lunch
14:30 AfriNIC Whois for the Incident Responder
15:30 CyberHealth Ecosystem Analysis
16:30 Break
17:00 AfricaCERT Framework
18:30 Dinner</pre>
</div>
<br>