Purpose
To provide Â鶹ӰÊÓ with guidance to developing and implementing the appropriate activities to take action regarding a detected information security event.
Policy
Â鶹ӰÊÓ has an Incident Response Plan (IRP) that addresses the processes and procedures to be executed and maintained, to ensure timely response to a detected information security event. Analysis of detected information security events is conducted, by Â鶹ӰÊÓ, to ensure adequate response and to support recovery activities. Upon detection of an information security event, Â鶹ӰÊÓ will take the necessary actions to prevent the expansion of an event, to mitigate its effects, and eradicate the incident. Upon mitigation of an information security event, Â鶹ӰÊÓ will incorporate lessons learned into the Incident Response Plan to improve upon it.
Summary
Description of the incident detection, analysis and response policy of Â鶹ӰÊÓ including the Incident Response Plan (IRP), Incident Response Communications and containment, eradication and recovery mechanisms.