Date Issued
9-28-2016
Document Type
Policy
Purpose
University of Health Sciences and Pharmacy in St. Louis (“University”) has adopted this policy to establish an Incident Response Plan (“IRP”) to manage the process for responding to a possible Security Incident involving Customer Information (“CI”) or Personally Identifying Information (“PII”) as defined below. The policy is intended to ensure a consistent process to follow when responding to any Security Incident, to mitigate potential risk and harm to affected parties, and to provide for post-incident review to facilitate appropriate changes to improve business practices for safeguarding and handling of Personal Information.
Responsible Party
Information Technology
Recommended Citation
"Security Incident Response Policy" (2016). Information Technology Policies. 12.
https://collections.uhsp.edu/informationtechnologypolicies/12
Incident Severity Classification Guidelines
appendix-b-incident-report-content (1).docx (18 kB)
Incident Report Content