Major Security Incident Policy

*** DEPRECATED - The information on this site is outdated and has been replaced by the Cyber Security Incident Management Policy which can be found here -


Approved by the CIO, June 21/17.

Excerpt: "This Policy defines a standard University-wide process for managing major information technology security incidents, references related University Policies, outlines preparations in advance of incidents occurring, and specifies a coordinated and managed response and escalation process.  A Policy Appendix charters an Information Security Incident Coordination Team (ISICT)."

View the full Major Security Incident Policy (PDF).

View the Information Security Incident Coordination Process (PDF).