Crytek CSIRT
-
Upload
crytekcsirt -
Category
Software
-
view
168 -
download
0
Transcript of Crytek CSIRT
![Page 1: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/1.jpg)
Computer Security Incident Response Team
Dmitry Korzhevin
![Page 2: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/2.jpg)
COMPANY OVERVIEW
![Page 3: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/3.jpg)
FACTS
Crytek is a leading, internationally operating developer and publisher of video games
Known for world class IPs and products such as the original Far Cry, the Crysis franchise, Ryse: Son of Rome and game–service Warface
All Crytek games are built with the proprietary game development solution CRYENGINE®
CRYENGINE is perfect for rich VR worlds and the new hardware is now capable of bringing our ideas to life.
Over 700 employees at 7 locations worldwide
![Page 4: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/4.jpg)
Crytek Games
![Page 5: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/5.jpg)
CRYENGINE® is Crytek’s key differentiator for success
World leading game development software for sophisticated computer and video games
Highest graphics quality and unique Realtime-3D-Technology
Innovation leadership as a result of 15 years of development know-how
Licensed by numerous third-party game developers and publishers
Sole integrated all-in-one solution for games on platforms of the current and future generation:
CRYENGINE
![Page 6: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/6.jpg)
CRYENGINE
![Page 7: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/7.jpg)
CSIRT creation
![Page 8: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/8.jpg)
The decision to create CSIRT was made 20
May, 2015 on the basis of
NOC department in Crytek Kiev Studio
CSIRT creation
![Page 9: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/9.jpg)
CSIRT TEAM
![Page 10: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/10.jpg)
5 Core team members
Working 24x7x365
Direct subordination (Frankfurt and Kiev)
Located in Crytek Kiev Studio
CSIRT Team
![Page 11: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/11.jpg)
Dmitry Korzhevin (Head of CSIRT)
Evgeniy Evtushenko
Yaroslav Sidoruk
Andrey Golovchenko
Konstantin Kushlianskiy
CSIRT Core Team Members
![Page 12: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/12.jpg)
CSIRT constituency
![Page 13: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/13.jpg)
Crytek STUDIOS and CSIRT constituency
FRANKFURT HQ
BUDAPEST ISTANBUL KIEV
SEOUL SHANGHAI SOFIA
![Page 14: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/14.jpg)
MISSION
![Page 15: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/15.jpg)
The CSIRT protects the primary business
process, Crytek reputation and all supporting
processes.
Crytek CSIRT MISSION STATEMENT
![Page 16: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/16.jpg)
Charter (Organizational Framework)
![Page 17: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/17.jpg)
CERT CMU SEI
ENISA
TF-CSIRT
FIRST
NATO NCIRC
Crytek CSIRT Organizational Framework
![Page 18: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/18.jpg)
CSIRT Services
![Page 19: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/19.jpg)
Reactive Services
Proactive Services
Quality Management
Crytek CSIRT Services
![Page 20: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/20.jpg)
Involved projects
![Page 21: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/21.jpg)
Penetration testing
Cyber resilience and hardening
Incidents handling
Cross department cooperation
Data protection
Involved Projects (Internal)
![Page 22: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/22.jpg)
Pfsense
Cuckoo Sandbox
Lynis
Teampass
StrongSwan Ipsec
Others...
Involved Projects (External)
![Page 23: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/23.jpg)
Skillset Description
![Page 24: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/24.jpg)
Penetration testing
Network Defense
Web Defense
Reverse Engineering
Mobile Application Penetration Testing
250 + certs
Skillset Description (competence)
![Page 25: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/25.jpg)
Team education policy
![Page 26: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/26.jpg)
Appraisal for each team member
PDP (6 month and 1 year tasks)
Close interaction with HR department
Team education policy
![Page 27: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/27.jpg)
Training providers
![Page 28: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/28.jpg)
eLearnSecurity
Offensive Security
PentesterLab
Pentester Academy
Hacker Academy (Symantec)
CYBRARY
Training providers
![Page 29: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/29.jpg)
International co-operation
![Page 30: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/30.jpg)
CERT CMU SEI
National Cyber Security Alliance
International co-operation
![Page 32: Crytek CSIRT](https://reader030.fdocuments.in/reader030/viewer/2022021502/587696481a28abab2f8b6c35/html5/thumbnails/32.jpg)
©2016 Crytek GmbH