Incident Response Policy

Purpose

To provide Â鶹´«Ã½ with guidance to developing and implementing the appropriate activities to take action regarding a detected information security event.

Policy

Â鶹´«Ã½ has an Incident Response Plan (IRP) that addresses the processes and procedures to be executed and maintained, to ensure timely response to a detected information security event. Analysis of detected information security events is conducted, by Â鶹´«Ã½, to ensure adequate response and to support recovery activities. Upon detection of an information security event, Â鶹´«Ã½ will take the necessary actions to prevent the expansion of an event, to mitigate its effects, and eradicate the incident. Upon mitigation of an information security event, Â鶹´«Ã½ will incorporate lessons learned into the Incident Response Plan to improve upon it.

Summary

Description of the incident detection, analysis and response policy of Â鶹´«Ã½ including the Incident Response Plan (IRP), Incident Response Communications and containment, eradication and recovery mechanisms.

Incident Response Policy Details [pdf]