Reporting security
incidents and weaknesses
Procedures should be built in to minimise
the damages from security incidents and
weaknesses by ensuring their timely reporting.
This would require the following controls:
• Reporting security incidents:
– Security incidents should be reported through appropriate
management channels as quickly as possible.
– A formal reporting procedure should be established,
together with an incident response procedure, setting out
the action to be taken on receipt of an incident report.
– All employees and contractors should be aware of the
procedure for reporting security incidents, and should be
required to report such incidents as quickly as possible.
– Suitable feedback processes should be implemented to
ensure that those reporting incidents are notified of results
after the incident has been dealt with and closed. These
incidents can be used in user awareness training of what
could happen and how to respond to such incidents.