Information and Information System Incident Reporting, Management, and Breach Notification
University Information Policy Office, email@example.com
This policy applies to all:
Per the procedures below, all individuals are required to immediately report to the University Information Policy Office (UIPO) any:
The UIPO will:
Although the UIPO will coordinate incident response, ownership of the incident remains with the unit experiencing the incident, which must allocate unit resources to resolve the incident in a timely manner.
Immediately report to the University Information Policy Office (UIPO) at firstname.lastname@example.org any:
In cases where a unit has an information security, privacy, or compliance officer, incidents should be reported to both UIPO and the unit officer.
The UIPO operates during normal business hours. When identifying suspected or actual incidents after hours, contact your local campus computing support centers or help desks and ask them to page the University Information Security Office (UISO), which monitors pages 24x7. A response from UISO should be expected with 15-30 minutes. If other methods fail to reach the UIPO or UISO within 30 minutes, contact the Bloomington Data Center Operators at 812-855-9910 and ask them to page the UISO.
Upon receiving a report, the UIPO Incident Response team will:
The unit(s) experiencing the incident is/are responsible for all monetary, staff, and other costs related to investigations, cleanup, and recovery activities resulting from the compromise, response, and recovery. The unit(s) may consult with the Office of Insurance, Loss Control, and Claims as to methods for funding the incident.