Incident Response

Download Free HIPAA Policy - IT Security Incident Response Template

Scope
This policy governs the University’s general response, documentation and reporting of incidents affecting computerized and electronic communication information resources, such as theft, intrusion, misuse of data, other activities contrary to the University’s Acceptable Use Policy, denial of service, corruption of software, computer- and electronic communication-based HIPAA violations, and incidents reported to Yale by other institutions and business entities. This policy does not include damage to personal computers owned by students, unless their computers contribute to the Incident defined by the parameters in Definitions, below.

Policy Statement
The Yale University IT Security Incident Response Policy and subordinate procedures define standard methods for identifying, tracking and responding to network and computer-based IT Security Incidents.

Download Free Incident Response Team Roles and Responsibilities Checklist

Scope
Responsible for the daily operation of the computer incident response team. Develops organizational policies related to incident response and secures authorization for their implementation. Provides general direction to and review of subordinate team leaders. Recognized as the organization's expert on computer incident response, security threats, and vulnerabilities. Liaisons with law enforcement and other incident response teams as needed.

Job Complexity
Works on computer security problems attributed to both internal and external threats. Tracks incident response trends to identify and evaluate fundamental security problems and needed improvements within the organization. Addresses managerial, financial, marketing, and security issues related to the protection of corporate information assets. Must be able to act quickly and decisively in a crisis situation.

Discretion
Can commit company resources needed in the course of incident response. Must be able to escalate concerns/issues when needed.