GSI Security Reportable Event Form

IMPORTANT!

  • Do not send confidential data, passwords, or other sensitive data.
  • Complete instructions are listed below the form.
  • All submittals, unless you self-disclose, are confidential and anonymous.
Incident Details:
* Event Date:  (mm/dd/yyyy)
Event Time:  :  CST
Priority:     see below
Documentation:  
* Description:

Important Information

Any violation of GSI security policies (including Authorized Use Policies), processes and procedures must submitted be via this security incident reporting form. And, any and all security incidents must be submitted through this form. The information contained in the security incident report is considered confidential and shall be transmitted, stored and processed in compliance with GSI's Confidential Data Policy, GSI CSIRT Policy, and GSI's Incident Response Plan.

back to top

Confidential Data

Confidential Data means any or all of the following:  credit card and related data, passwords, PHI (Protected Healthcare Information) data, PII (Personally Identifiable Information), corporate sensitive data, etc.

back to top

Instructions

  1. Describe the event in as clear and detailed language as possible. Include any and all supporting documentation by zipping up the supporting documents and attaching to this this report. Do not include Confidential Data in your attachments (i.e., card numbers, account numbers, social security numbers, and other types of PII data).
  2. This form is an anonymous submission. Please use this form to report any/all violations of GSI security policy, processes or procedures or to report other security issues impacting GSI and/or GSI Client systems hosted at GSI facilities.
  3. You must give this report an Incident Reporting Level. This is crucial for determining how rapidly GSI CSIRT must react to protect GSI, Clients, and confidential data. Use the following scale to determine the appropriate reporting level:

    Incident Reporting Level Description CSIRT Response Time
    Level 1 Intrusion has/is being monitored, one or more network security measures may have failed. And/Or, confidential data (i.e., cardholder data, PHI, PII, passwords, etc.) may be at risk or availability of service may be at risk.
    - OR -
    Activities which are violations of law including assault, harassment, disclosure of client data, theft, etc. have been personally witnessed.     		1 hour
    Level 2 Intrusion has been monitored, systems worked as designed, confidential data (i.e., cardholder data, PHI, PII, passwords, etc.) appear to be secure and availability of service does not appear to be impaired.
    - OR -
    Activities which are in direct violation of GSI policy, practices and/or procedures have been detected.     		4 hours
    Level 3 Indicators exist of a potential problem. No apparent damage found
    - OR -
    Questionable activities have been observed through personal observation or as a result of review of reports, documents, etc.     		Next business day
    back to top

Thank you,

GSI CSIRT
(Computer Security Intrusion Response Team)