Cybersecurity Incident Response Policy

Cybersecurity Incident Response Policy

This policy outlines the roles and responsibilities that govern the response to and reporting of cybersecurity incidents that impact the confidentiality, integrity, or availability of the University of Richmond’s information and technology services.  This policy is supplemented by an internal Incident Response Plan (IR Plan) developed and maintained in alignment with the National Institute of Standards and Technology (NIST) Special Publication 800-61 “Computer Security Incident Handling Guide.” The IR Plan contains detailed procedures and guidelines for incident response handling at the University.

View the Cybersecurity Incident Response Policy.