IT Incident Policy
1. Policy Statement
The Wind Farm IT Office will ensure that it reacts appropriately to the release of any secure information, whether intentional or unintentional, within the custody or control of Wind Farms.
2. Purpose
The aim of this policy is to ensure that Wind Farms IT Office’s response to any actual or suspected data breach of any relevant information, data, or files is timely, appropriate, and effective.
3. Objectives
The object of this policy is to provide information, guidance, and assistance on what needs to be done in the event a data breach occurs at Wind Farms (Wright).
4. Detailed Response Procedures
Once an incident is discovered, the person making the discovery will contact the appropriate incident response team member. Reporting on the incident should include the following details:
equipment or persons who were involved in the incident
how the incident was detected
what was the time that the incident was detected
Failure to report an incident to the above manner will result in the person’s immediate referral to the disciplinary committee for review and disciplinary action (SANS Institute).
Once the appropriate incident response team is informed, if necessary, s/he will convene a meeting of the full incident response team at the earliest possible time after the incident’s discovery to discuss:
whether the incident is legitimate issue
whether the incident is ongoing or has stopped
what information has been affected by the incident and is it critical
what will the impact be on Wind Farms
what do the details of the information say about the Wind Farms network
what should the response to the incident be
who will responsible for which parts of the response
what should be done to ensure that such an incident does not happen again
The core incident response team shall consist of the following people:
Claire Jones (IT Director): Responsible for initial incident response contact analysis as well as convening the full incident response team meeting. Responsible for crafting and implementing the technical response to the incident
June Su-Woo (Chief General Counsel): Responsible for reviewing the legal issues of the incident and any eventual response
David Weber (Sales & Marketing Director): Responsible for communicating with relevant outside stakeholders on the incident and Wind Farm’s response
Kevin Williams (QA Manager): Responsible for working with IT to ensure that the technical response is implemented through the organization’s technical framework
Simon Lodine (CEO) coordinating the response, informing internal and external parties, making the final decision on what the response.
More staff and personal may be added to the incident response team on a case-by-case basis.
Works Cited
SANS Institute. “Information Security Controls.” 2001. Print.
Wright, Timothy E. “How to Design a Useful Incident Response Policy.” Symantec, 18 Sep. 2001. Web. http://www.symantec.com/connect/articles/how-to-design-useful-incident-response-policy
