Skip to main content
  • This page, Information Security Incident Management Standard, is offered by
Advisory

Information Security Incident Management Standard

Date: 10/05/2018
Organization: Cybersecurity and Enterprise Risk Management
Referenced Sources: MGL Chapter 7D, Section 2

This standard documents the requirements for managing an information security incident; describes the actions to be taken should an incident occur; and details each phase of the incident management life cycle, including identification, investigation, response and remediation.

Contact

Cybersecurity and Enterprise Risk Management

Online

Cybersecurity questions: CommonwealthCISO@mass.gov
Risk management questions: ERM@mass.gov
Report cybersecurity or data breach: eotss-soc@mass.gov
Skip table of contents

Table of Contents

You skipped the table of contents section.

Purpose

The Information Security Incident Management Standard documents the requirements for managing an information security incident; describes the actions to be taken should an incident occur; and details each phase of the incident management life cycle, including identification, investigation, response and remediation.

Downloads

IS.009 Information Security Incident Management Standard (PDF 228.49 KB)

Contact

Online

Cybersecurity questions: CommonwealthCISO@mass.gov
Risk management questions: ERM@mass.gov
Report cybersecurity or data breach: eotss-soc@mass.gov
Referenced Sources:
MGL Chapter 7D, Section 2
Feedback