IT Security Incident Response Plan
WHAT IS CONSIDERED AN “INCIDENT”?
An incident can be an occurrence, condition, or situation arising in the course of work that resulted in or could have resulted in:
- Loss of data, compromise of account information, exchange of PII information, unauthorized network access,
- Phishing scam, email spoofing, or social attempt to collect information.
It is essential to understand that reporting an incident, even if you did not fall for the situation, allows the IT Department to be aware and use it to make others aware of the technique being used by cybercriminals. This increases awareness through the entire company and educates other staff that might not be as cyber-aware of the threats.
With cybercrimes continuously rising in record numbers, we cannot assume we are safe and must continue to communicate and educate everyone in the organization of the dangers and that we are all targets. Sometimes, the savviest technical users are tricked with basic techniques because it becomes almost normal behavior.
The facts are scary. With over 70% of companies in the education, research and medical industries and over 50% of IT firms being directly affected by cybercrimes, we must stay diligent; we need to keep our employees aware of current and possible threats to our organization’s systems and information.
