All USG institutions, the USO, the GPLS, and the Georgia Archives must establish a Computer Security Incident Response (CSIR) plan to respond to and manage adverse activities or actions that threaten the successful conduct of teaching, instruction, research and operations in the USG. This plan should follow existing USG policies and standards, industry best practices, and International Organization for Standardization (ISO) and National Institute of Standards and Technology (NIST) guidelines. This plan must be on file with USG Information Security & ePrivacy per the Reporting Requirements noted in Section 5.10 of this IT Handbook.
The Information Security office will respond to all reports of abuse or suspected security compromise of any GS IT resource. An IT incident is any activity involving GS IT resources that: violates the law, constitutes harassment, violates regulatory requirements, violates GS policy, compromises University data, or involves unexpected disruption of University Services.
Last updated: 4/6/2022