Preparatory activities, including documenting, training, and testing, are essential to identifying, containing, eradicating, and recovering from a security incident. It is important to act as if you a preparing for when an incident will occur, rather then if. Taking a proactive approach will help you return to normal activities as soon as possible.
👥 Audience
RESEARCHERSADMIN STAFFIT STAFF
Initial considerations
📋 Departmental and divisional incident response plans.
Contact your local IT group about your department or division’s incident response plan. Ask how your team can or does fit into it.
Preventing an incident is always preferable to recovering from an incident. Enacting the following best practices can reduce the risk of an incident significantly.
🚨 Review and adopt the University incident response plan or use it to create your own.
Every employee at the University should be familiar with the incident response process and able to escalate incidents to their academic, administrative, or technical leadership teams, should an incident arise.