OIT Home > Policies > Information Technology Policies > Incident Response Policy

Information Security Incident Response Policy

July 2009

To download the Official University Policy [PDF], please go to: http://policy.nd.edu/policy_files/InformationSecurityIncidentResponsePolicy.pdf

Policy Statement

This Policy specifies actions required of University personnel reporting or responding to an information security situation that may threaten the confidentiality, integrity or availability of University systems, networks or data.

All members of the University community are responsible for reporting known or suspected information security events promptly.
The University reserves the right to take necessary action under this policy to protect University resources or preserve evidence.
The Chief Information Officer (CIO) or designee is responsible for escalating a reported event as an incident, according to the criteria in the Procedures section of this document, and for directing any action deemed necessary to facilitate incident response.
Individuals reporting or responding to an incident will follow the Information Security Incident Response Procedures and relevant sections of the Campus Emergency Preparedness and Response Plan.
All individuals involved in reporting or investigating an information security event or incident are obliged to maintain confidentiality, unless the CIO or cognizant University Officer authorizes information disclosure.
The CIO or designee must approve any exceptions to this policy or related procedures.

Scope

This policy applies to all individuals or entities using any University computer systems, networks or data.

Contacts

Policy Clarification:

Office of the Chief Information Officer, OIT, Phone: (574) 631-9700, E-mail: cio@nd.edu

Procedures:

Information Security, OIT, Phone: (574) 631-5554, Email: infosec@nd.edu