What is a Security Incident?
A security incident is any attempted or actual unauthorized access, use, disclosure, modification, or destruction of information. This includes interference with information technology operation and violation of campus policy, laws or regulations.
Examples of Security Incidents Include:
- Computer system breach
- Unauthorized access to, or use of, systems, software, or data
- Unauthorized changes to systems, software, or data
- Loss or theft of equipment storing institutional data
- Denial of service attack
- Interference with the intended use of IT resources
- Compromised user accounts
How to Report a Security Incident
Employees can report security incidents electronically using a form from the employee help desk. A simple incident report form is used by employees to report a security incident. All reported incidents are seen by both the employee and the manager, who subsequently accepts and resolves them.
Zpracování hlášení bezpečnostního incidentu
Nahlášení bezpečnostního incidentu probíhá dle workflow tak, jak si ho nastavíte. Hlášení se automaticky nasměruje na odpovědnou osobu.
- Bezpečnostní incident putuje na vědomí buď přímý nadřízený žadatele nebo centrálně odpovědné osobě (manažer bezpečnosti, IT manažer )
- Odpovědná osoba zaháj řešení a šetření celé situace podle vnitrofiremních předpisů
- Každý zaměstnanec může podávat hlášení bezpečnostního incidentu
Recommended Settings for Reporting a Security Incident
- Assign a Security Incident Manager
- The most common and recommended setting is approval by your direct manager.