ENOC (Ednon NEXT Operations Center) is our Security Operations Center (SOC) and where our computer security incident response team (CSIRT) operates.
It is certified under the National Security Scheme (ENS) and under UNE-ISO 27001: 2014 (Information Security Management System).
Choosing a SOC provider is a key decision that must be carried out conscientiously as it will be an extension of your security team, and will be responsible in many cases for tasks such as threat detection, coordination and execution of incident response, etc. The EDNON SOC-CSIRT highlights the following key aspects:
ENOC-CSIRT is a private CSIRT dedicated to provide services to public and private organizations, and it is created by mandate of the EDNON manadgement with the mission of providing security services and protecting the information systems of the different departments of the organization and clients external to it, both being hereinafter referred to as the beneficiaries, in the event of security incidents that could affect the integrity, confidentiality or accessibility of the data and / or damage the operations or reputation of those affected.
Para lograr estos objetivos ENOC-CSIRT realiza, entre otras, las siguientes tareas:
To achieve these objectives, ENOC-CSIRT adheres since its creation to the following values:
The services provided by ENOC-CSIRT are directed to all EDNON internal departments and to external company organizations subscribed to them.
ENOC-CSIRT operates, within EDNON S.L., under the authority of our Head of Information Security and the company’s Management.
Regarding its external clients, ENOC-CSIRT acts as an advisor to the security teams of those clients and doesn’t have authority over them. Therefore, the implementation of the provided recommendations will be exclusively responsibility of the client.
All the services provided can be consulted in the descriptive document of the service: RFC 2350 ENOC-CSIRT (rfc2350_enoc-csirt.pdf).
El ENOC-CSIRT emplea para las comunicaciones relacionadas con gestión de incidentes la dirección de e-mail csirt@ednon.es y la siguiente clave PGP:
Nombre: ENOC-CSIRT incidents <csirt@ednon.es>
Fingerprint: 07FD 02D5 0DD3 F3B9 CBAE 2C3F C08C 6FA8 52AF 9281
Para comunicaciones administrativas se emplea la dirección de e-mail enoc_csirt@ednon.es asociada a la siguiente clave PGP:
Nombre: ENOC-CSIRT Team <enoc_csirt@ednon.es>
Key ID: 0x067EACDC7D3982AB
Fingerprint: 6198 77B2 3D02 B898 191C 76D1 7774 15EC 4FB7 B357
Estas claves se encuentran disponibles en servidores públicos de claves PGP.
El cifrado PGP debe ser empleado en todas las comunicaciones por correo electrónico que, dado su nivel de confidencialidad, así lo requieran.
El fichero de firma se encuentra accesible a continuación: rfc2350_enoc-csirt.pdf