Incident response planning

Purpose

Preparatory activities, including documenting, training, and testing, are essential to identifying, containing, eradicating, and recovering from a security incident. It is important to act as if you a preparing for when an incident will occur, rather then if. Taking a proactive approach will help you return to normal activities as soon as possible.


Audience

researchers Admin staff IT staff


On this page


Initial considerations

Departmental and divisional incident response plans.

Follow security best practices.


What can I do?

Review and adopt the University incident response plan or use it to create your own.

Report suspected incidents.


Search

How do I...


Additional help

General

Contact us | Information Security (IS)

Contact us | Information Technology (IT)

Researchers

Research Information Security - Information Security at University of Toronto


Related articles

Â