This repo is for community management, including event planning, meeting notes, governance, discussions. Use this repo for everything that is not direct content for the website
This working group is an opportunity for the UK TRE Community to explore issues related to the management and communication of cyber security related risks in TREs.
General guidance on cyber security management, risk identification and mitigation, and good cyber security practice for service providers and software developers is readily available. However, specific guidance in the context of TREs is not, and this group aims to provide that guidance by defining requirements such as type of tools to be used, and their purpose in a TRE. Concrete example implementations will be provided, but the principles will be more generally applicable.
Actions
[ ] Add feedback or contributions to charter via comment
[ ] Contact the CMWG if you cannot publicily comment
[ ] Add any objections to the WG going ahead you may have
[ ] Discuss and modify the charter if necessary
[ ] After 14 days if no objections co-chairs (Steering committee) will approve, if there are objections CMWG will coordinate a discussion and mediation
Detail
new WG ready for review: https://www.uktre.org/en/latest/structure/cybersecurity-risk.html
This is the main document to refer to, it should contain all of the below and further detail: CyberSec Risks Working Group Charter
This working group is an opportunity for the UK TRE Community to explore issues related to the management and communication of cyber security related risks in TREs.
General guidance on cyber security management, risk identification and mitigation, and good cyber security practice for service providers and software developers is readily available. However, specific guidance in the context of TREs is not, and this group aims to provide that guidance by defining requirements such as type of tools to be used, and their purpose in a TRE. Concrete example implementations will be provided, but the principles will be more generally applicable.
Actions
Who can help
No response