What is a Technology Incident Response?
- Formal guidance for responding to an adverse effect that significantly threatens or compromises the availability, confidentiality and integrity of information resources. Numerous events, such as computer viruses or malicious codes, disclosure of confidential information, or unauthorized access can lead to a technology incident. (Information resources include numerous forms of data as well as the media software, hardware, facilities and personnel that support the collection, recording, processing, transmission, storage and presentation of the data.)
- The technology incident response plan, as proposed, addresses only adverse events that are technology-related and excludes adverse events caused by natural or man-made sources, such as water, fire, storm, or utility failures
- Some adverse effects require activation of the technology incident response team, while others can be managed through awareness efforts or other management protocols.
Inappropriate/Unauthorized Access or Disclosure: SSN; WVUID; Credit Card; Research Data.
Compromised Resources (lost or stolen): Servers; Webpage(defacement/exposure of information); Stolen or lost resource.
Incidents Requiring WVU Community Awareness or Response: Email Spam or Abuse; Phishing Scams; Virus Alert; Critical Patching or Updates; Increase of resource theft on campuse.
Incidents with Special Reporting and Management Tools: Violation of the OIT Copyright Infringement Policy (managed by OIT); Violation of the OIT Appropriate Use Policy (manages by OIT and the WVU Ethics Line).