Speakers
Description
SIRTFI defines how federated organisations should coordinate during security incidents, yet asserting compliance does not automatically build operational trust. In 2025, InCommon conducted a multi-day, story-driven cybersecurity cooperation exercise involving distributed Identity Providers and Service Providers. The exercise revealed gaps between IAM and security teams, inconsistent handling of TLP markings, and challenges in cross-institution communication. This session shares lessons learned and demonstrates how structured tabletop exercises can operationalise federated trust, strengthen coordination across eduGAIN participants, and move communities beyond checkbox compliance toward a culture of shared responsibility and practical cooperation.
What will the TNC audience take away from your talk?
Attendees will leave with a clear understanding of why federated incident response matters, what InCommon’s SIRTFI exercise revealed about real-world coordination gaps, and practical steps their organizations can take to strengthen contacts, communication pathways, and readiness for cross-border security events. They’ll also see how future participation from the broader eduGAIN community can amplify these benefits globally.
| Are you a first time speaker at TNC? | No |
|---|
