Incident Reporting and Response

Every user of University information resources has responsibility for the protection of information assets; certain offices and individuals have very specific responsibilities.  The University recognizes the need to follow established procedures to address situations that could indicate the security of information assets may have been compromised. In order to ensure that Information Security Incidents are handled properly, effectively and in a manner that minimizes the adverse impact to the University, a standard University-wide approach has been adopted.  This approach will also ensure that the appropriate level of University management becomes involved in the determination of actions implemented in response to an Information Security Incident.

The Information Security Incident Response (ISIRT) program supports ISO Policy PS006 and is applicable to all University students, faculty, staff, and to all others granted use or custodianship of University to all University students, faculty, staff, and to all others granted use or custodianship of University information assets.