Stanford Information Security Incident Response Process
University representatives who become aware of an information technology emergency should immediately take appropriate action on behalf of the university.
As soon as possible after the initial action is taken the CIO should be informed about the action.
Emergency actions which result in information infrastructure changes should be communicated to relevant and affected groups in a timely fashion.
The CISO will convene an Information Security Incident Response Working Group within 30 days to review the emergency action in the same manner as a non-emergency proposal would be handled, as depicted in the Stanford Information Security Policy and Requirements Process diagram.
Need More Information?
Contact the Information Security Office regarding security issues with Stanford computers or network resources.
- security@stanford.edu
- security.stanford.edu
- 650-723-2911