|
3.7.1. Incidents involving computer security will be managed by the Information Security Officer and will be reported as required by federal or state law or regulation. 3.7.3. All faculty members, staff, and/or students shall report promptly any unauthorized or inappropriate disclosure of confidential information, including social security numbers; to the University Information Security Officer (via ISO@tamiu.edu or 956-326.2026), their supervisors, and/or the TAMIU OIT hotline (via hotline@tamiu.edu or 956-326-2310). 3.7.4 TAMIU shall disclose, in accordance with applicable federal or state law, incidents involving computer security that compromises the security, confidentiality, and/or integrity of personal identifying information it maintains to any employee of Texas A&M International University and Data Owners whose personal identifying information was, or is reasonably believed to have been, acquired without authorization. 3.7.4.1. Disclosure shall be made as quickly as possible upon the discovery or receipt of notification of the incident taking into consideration (a) the time necessary to determine the scope of the incident and restore the reasonable integrity of operations or (b) any request of a law enforcement agency that determines that the notification will impede an criminal investigation. The notification shall be made as soon as the law enforcement agency determines that it will not compromise the investigation. 3.7.5 All normal requests for monitoring assistance from external agencies shall be coordinated through the ISO. Exceptional/urgent requests are to be directed to Help Desk, which will comply as appropriate and inform the ISO as lawfully allowed. 3.7.6 For any Incidents on the systems is required to fill out the Systems’ incident report form (i.e. power outages) 3.7.6 Documents b) Missing equipment form |
3.7 INCIDENT MANAGEMENT |
|
3. Security Safeguards (TAC 202.75.7 ) |
