Security Incident Reporting Form

Level 3 Response - Critical Response A Level 3 response is applied to an information security incident when an information asset is suspected of having access to regulated data, as defined by the University of Nebraska Data Classification Standard policy, University of Nebraska policy and state or federal statutes. Information security incidents may also require a Level 3 response if the information asset has been used in a way contrary to applicable University policies and state, or federal statutes which may result in University disciplinary action and civil or criminal sanctions or it is apparent that a deliberate malicious attack is being conducted upon University information assets. Level 2 Response – Standard Response A Level 2 response is applied to an information security incident when there is no apparent breach of regulated data, as defined by University of Nebraska policy and state or federal statutes. A Level 2 response also applies to information assets that support multiple users or have affected the normal operation of other assets including affecting availability of information resources. A Level 2 response could also be triggered if a deliberate attack on information assets is found but the risk profile or quantity of attacks is low enough to not warrant a Level 3 response. Level 1 Response – Basic Response A Level 1 response is applied to an Information security incident where the affected information asset is a single-user system which has not affected the normal operation of other assets. It has not affected the widespread availability or compromise of institutional data.
Data classification policy located at https://its.nebraska.edu/-/media/unca/docs/offices-and-policies/policies/information-technology-services/its-05-data-classification-and-storage-policy.pdf?la=en