Data-Incident Notification Policies and Procedures
Added by the EDUCAUSE Librarian
| Title: | Data-Incident Notification Policies and Procedures (ID: SPC0661) | |
| Author(s): | Mary Ann Blair (Carnegie Mellon University), Tracy Mitrano (Cornell University), and Steven Schuster (Cornell University) | |
| Topics: | Incident Handling and Response, Policy and Law, Security Policies | |
| Origin: | Presented at Security Professionals Conference (04/10/2006) | |
| Type: | Presentations/Speeches | |
| Abstract: | Information security policies and procedures increasingly must respond to legal requirements in the area of notification in the event of a breach of personally identifiable information. This session will also explore technical issues related to meeting legal standards such as "reasonable belief that data has been acquired by an unauthorized user." Members of a panel will also describe their actual responses to incidents at their institutions. | |
| View this resource: |
|
Bookmark/Search this page with:
