Skip to main content
  • This page, Information Security Incident Management Standard, is offered by
Advisory

Information Security Incident Management Standard

Date: 10/05/2018
Organization: Cybersecurity and Enterprise Risk Management
Referenced Sources: MGL Chapter 7D, Section 2

This standard documents the requirements for managing an information security incident; describes the actions to be taken should an incident occur; and details each phase of the incident management life cycle, including identification, investigation, response and remediation.

Contact

Cybersecurity and Enterprise Risk Management

Online

Cybersecurity questions: CommonwealthCISO@mass.gov
Risk management questions: ERM@mass.gov
Report cybersecurity or data breach: eotss-soc@mass.gov
Skip table of contents

Table of Contents

Purpose

The Information Security Incident Management Standard documents the requirements for managing an information security incident; describes the actions to be taken should an incident occur; and details each phase of the incident management life cycle, including identification, investigation, response and remediation.

Downloads

IS.009 Information Security Incident Management Standard (PDF 228.49 KB)

Contact

Online

Cybersecurity questions: CommonwealthCISO@mass.gov
Risk management questions: ERM@mass.gov
Report cybersecurity or data breach: eotss-soc@mass.gov
Referenced Sources:
MGL Chapter 7D, Section 2
Feedback