Information Technology Policies and Standards
|Computer abuse incident reporting response Policy|
To Be Reviewed
|Applies to all City information technology assets.|
|Policy Definitions: |
It is illegal for any unauthorized person to access programs, data or material, the unauthorized modification of that data or material, and having unauthorized access with criminal intent.
Misuse of City information technology assets will not be tolerated. Each City employee is responsible for reporting known or suspected abuse incidents to their Department Management or to Information Technology Services Department (ITSD).
- Where an abuse incident involves potential misconduct by a City employee, that employee's Department Management retains responsibility for the ultimate resolution of the incident and any action taken against the employee. ITSD will provide technical assistance as required.
- Where an abuse incident involves potential effects on the City's information technology infrastructure, ITSD will take the actions necessary to secure the reliability and integrity of the infrastructure.
- Where an abuse incident involves Federal or State law, or City Ordinance that requires the City to act in its role as a "service provider", ITSD will coordinate those actions.
- Where an abuse incident involves possible criminal activity or threats to personal safety or physical property, ITSD will contact and coordinate with the appropriate law enforcement agencies.
|The Computer Abuse Incident and Response is highly useful in ensuring that peoples’ work and personal information, plus City IT assets, are kept safe. Due to these issues, including the safety and privacy of City employees, it is imperative that a formal reporting and response policy be followed when responding to incidents of City computer abuse. |
- Migrate applicable content to process/procedures.
- Align with City Policy- 301.6 Report of Abuse
|Contact: Arthur C. Montoya, (505) 768-2925|