Reporting an Incident
Incidents should be reported to the DTS Service Desk or by email to .
Reporting computer security-related incidents to a centrally coordinated group ensures incidents are handled appropriately and fully address any ramifications to systems and users throughout the State's Wide Area Network.
Users should report any of the following activities related to State technology systems and assets:
- Attempts (either successfully or unsuccessfully) to gain unauthorized access to a system or its data
- Unplanned disruption in services or denial of services
- Unauthorized use of a system for storing or sending data
- Changes to system hardware, firmware or software without an agency’s knowledge, instruction or consent
- Loss or theft of computer-related items such as: laptops, desktops, mobile storage devices (USB drives), smart phones, network equipment, backup tapes, etc.
- Exposure or loss of confidential or sensitive data containing information such as social security numbers, credit card numbers, health record information or other personally identifiable data
- Attempts to cause failures that may cause loss of life or significant impact on the health or economic security of the State
- Introduction of a computer-related contaminant (e.g., malicious code, virus, worm, etc.) into any computer device or network
- Unauthorized physical accesses, attempted access, or destructions of protected areas such as data centers, wiring closets, etc.
Disaster Recovery
Produced by NASCIO
More Information on Reporting an Incident
Reporting incidents to a central coordinating group promotes collaboration and information sharing with other agencies that may be experiencing the same
problems. This helps in coordinating any activities in resolving incidents, raising awareness of enterprise problems, collecting consistent statewide information, and ability to pursue corrective or legal action.
For more information:
Computer Security Incident Reporting Policy for DTS Employees
