Joseph SmithBrian Schmidt, Waters Hall
- All incidents and suspected incidents will be tracked and recorded by the Cybersecurity Officer. All incidents records will be maintained for three years or longer, as required under relevant regulations.
- The Cybersecurity Officer will assemble an ad-hoc response team consisting of the reporter, data steward/owner, appropriate department heads, the Chief Information Officer (CIO), the Director of Public Relations, and University Counsel.
- The response team will determine the breadth and depth of the suspected incident based on an incident evaluation and review of appropriate logs and other information sources. External resources may be called into to assist with the analysis. The president and president’s cabinet will be notified of the suspected incident.
- The University Counsel and Chief Information Officer will determine if the incident warrants a notification of the effected individuals, campus community, or the public.
- Incidents involving the compromise of personal information (as defined under State Government Article 10-1031) must be reported to the University System of Maryland office of the CIO.
- Any notification of the campus community or the public will be coordinated by the UMES Office of Public Relations.
Maryland Cybersecurity Incident Response Policy
Cabinet approval pending. 12/13/18