Security Incident Procedures

This section of the Administrative Rules requires that you implement policies and procedures to address security incidents. There is one required task.

Response and Reporting is a required task under this section. You must identify and respond to suspected or known security incidents; mitigate, to the extent practicable, harmful effects of security incidents. Document security incidents and their outcomes.

Once a security incident is discovered or suspected you must have a process in place to minimize the damage, and document the incident from discovery to conclusion. Currently, there is no provision in the rule regarding reporting to the authorities. However, in some cases this may be necessary. Again, employees must have and be aware of a method of reporting actual or suspected incidents to you.