De La Salle Araneta University

Home > Inside DLSAU > Information Technology and Systems Management Office > Policies > Incident Response Policies

INFORMATION TECHNOLOGY AND SYSTEMS MANAGEMENT OFFICE

Policies

• » Procedure for Reporting a Security Incident
• » Reporting the Security Incident
• » Response

Incident Response Policies

Due to a variety of issues, including the safety and privacy of DLSAU’s students, faculty and staff, it is imperative that a formal reporting and response policy be followed when responding to security incidents.

These are policies and procedures for DLSAU University faculty, staff and students to report any potential security incidents. The policy will also outline the anticipated response by ITSMO.

DEFINITIONS

Information Technology Asset – A system or systems comprised of computer hardware, software, Networking equipment, as well as any data on these systems. Such assets include but are not necessarily limited to desktop computers, servers, printers, telephones, network lines, E-mail and web based services.

Security Incident – an incident meeting one or more of the following conditions:

• Any potential violation of University Policy involving a University Information Technology Asset.
• A breach, attempted breach or other unauthorized access* of a DLSAU Information Technology Asset. The incident may originate from the DLSAU network or an outside entity.
• Any Internet worms or viruses.
• Any conduct using in whole or in part a DLSAU Information Technology Asset which could be construed as harassing, or in violation of DLSAU Policies.