Notices
NSC-031024: Computer Security Incident Process Improvements
The following changes have been made to the process we use for computer security incidents, including those which may occur on a "large
scale" Please review and bookmark the links described below for future use.
1. All incident records are being tracked to facilitate complete & accurate information and our ability to correlate the scope/extent of
incident activity. If you suspect/discover a security breach or incident has occurred, NSC contacts are responsible to report it to the IT Security Office using either the web form at http://cio.uiowa.edu/itsecurity/incident/incident-form.htm, sending a message to it-security@uiowa.edu, or by calling 335-6332.
2. When circumstances arise that require a computer to be disabled from network access, a message will be sent to the corresponding NSC building contact list that houses the machine. To make these notices as timely as possible, only the information immediately available will be sent in the email notice.
3. As more information (i.e., room location, jack number) becomes available the incident record will be updated to reflect current known details. An updated list of disabled network ports (jacks) is available at http://cio.uiowa.edu/itsecurity/incident/ports.shtml This page allows you to select a building to narrow the list of disabled ports, or you can select all records. You are advised to regularly review the disabled port status information on these pages for the building(s) you're concerned with.
4. When you/others complete repairs or re-imaging of damaged machines, complete the port enable request form which is available at
http://cio.uiowa.edu/itsecurity/incident/enableport- form.htm Enable requests made via telephone call or email will be redirected to the form so that all of the information needed by networking staff is gathered and recorded.
5. If you need assistance with the resolution of a computer security issue, you have several options:
a. contact your Collegiate or Unit IT Management for referral (see a list at http://cio.uiowa.edu/citl/members.shtml)
b. contact the ITS Help Desk (4-HELP) or HCIS Help Desk (5-6500)
c. contact the IT Security Office (5-6332 or 5-6174)
6. All notices sent to the NSC-ALL mailing list are also posted on the IT Security website Notices page: http://cio.uiowa.edu/itsecurity/newnotices/ for reference. This page is available to anyone connected via the campus network.
7. A seminar is being planned for all campus NSC's to review these process items, your responsibilities as an NSC, and to answer your questions and hear your suggestions for additional improvements. A separate notice will be sent when the date and time have been finalized.