Cyber Security Incident Management Policy
Approved by the CIO - September 14, 2023
This Policy defines a standard University-wide process for managing information security incidents in advance of their occurrence and provides guidance for initiating a rapid response and appropriate escalation when a major information security incident occurs or is suspected to have occurred. This Policy charters a standby Cyber Security Incident Response Team (CSIRT). The University Chief Information Officer (CIO) is the executive sponsor of this policy and the CSIRT. The Cyber Security Incident Response Process documents when the CSIRT would be activated and may involve University administration, judicial processes, Campus Community Police, and technical resources.
View the full Cyber Security Incident Management Policy (PDF) 