Description
This policy is a supporting policy of the Information Security Policy, so the purpose of this policy is the same, to secure information. This policy outlines the approach to responding to an information security event. This policy requires management to financially support and diligently attend to security response planning efforts in order to ensure that resulting plans can succeed. This policy defines the requirements for a baseline security response plan to be developed and implemented by the organisation that will describe the process to respond to a security incident.