Purpose
To provide É«ÖÐÉ« with guidance to developing and implementing the appropriate activities to take action regarding a detected information security event.
Policy
É«ÖÐÉ« has an Incident Response Plan (IRP) that addresses the processes and procedures to be executed and maintained, to ensure timely response to a detected information security event. Analysis of detected information security events is conducted, by É«ÖÐÉ«, to ensure adequate response and to support recovery activities. Upon detection of an information security event, É«ÖÐÉ« will take the necessary actions to prevent the expansion of an event, to mitigate its effects, and eradicate the incident. Upon mitigation of an information security event, É«ÖÐÉ« will incorporate lessons learned into the Incident Response Plan to improve upon it.
Summary
Description of the incident detection, analysis and response policy of É«ÖÐÉ« including the Incident Response Plan (IRP), Incident Response Communications and containment, eradication and recovery mechanisms.