What is an Information Security Incident?
An information security incident is described as a "sudden, unplanned, adverse, locally impacting change that threatens the security of Sensitive Information and Sensitive Systems and therefore require urgent and timely mitigating responses."
All University staff and contractors (affiliates) are required to report any observed or suspected incidents to the appropriate manager and the University Information Security Officer as quickly as possible.
These events may include, but are not limited to, the following:
- Suspected criminal use of systems or services, including:
- Identity theft
- Disclosure, destruction, or alteration of University or affiliate - managed systems or data
- Breach of confidentiality
- Loss or theft of devices that contain or enable access to University records
- Compromise of credentials or a web page
- Attempts to gain unauthorized access to a system or data
- Denial of service (DoS)
- Changes to system hardware, firmware or software without the University's or affiliate's knowledge, express instruction or consent
- Execution of malware
- Attempts to cause system failures or loss of supervisory control