The purpose of Middlebury’s technology incident response policy is to provide a standard response process in the event of an information technology incident, in order to protect the institution’s data, systems, and reputation.

Scope

The scope includes technology systems, services, networks, and data owned or managed by Middlebury.

Reporting Procedure

To report an information technology issue, email helpdesk@middlebury.edu

To report an actual or suspected information security issue, email infosec@middlebury.edu

Technology Incident Classifications and General Characteristics

Major Incidents

  • impact the majority of our community (ie. everyone)
  • and prevent Middlebury from being able to conduct normal operations for more than 24hrs
  • and may have a major impact to the reputation of the institution

Significant Incidents

  • impact a significant portion of our community (ie. teaching/learning)
  • can have a significant impact on Middlebury’s ability to be able to conduct normal operations
  • and may have a significant impact to the reputation of the institution

Minor Incidents

  • impact a small portion of our community (ie. a department or small group)
  • can have a minor impact on Middlebury’s ability to be able to conduct normal operations
  • and may have a minor impact to the reputation of the institution

Isolated Incidents

  • impact a single community member 
  • have little or no impact on Middlebury’s ability to be able to conduct normal operations
  • do not impact the reputation of the institution

Policy

The response to isolated and minor information technology incidents will managed by Middlebury’s Information Technology Services organization, with notification to Middlebury’s Information Security Officer (ISO) for information security incidents.

The response to significant information technology incidents will managed by Middlebury’s Information Technology Services organization, with direction from Middlebury’s ISO and/or Chief Information Officer (CIO).

In the event of a major information technology incident, Middlebury’s ISO and/or CIO will activate Middlebury’s Technology Incident Response Team (TIRT).  Generally, a major information technology incident:

  • impacts the majority of our community (ie. everyone)
  • and prevents Middlebury from being able to conduct normal operations
  • and may have a major impact to the reputation of the institution

The TIRT is responsible for facilitating communication and resolution of the incident. The TIRT is also responsible for formulating and enacting a mitigation plan.

  • The TIRT will have representatives from ITS, Human Resources, Student Life, Academic Affairs, Finance, and Public Safety. Depending on the nature of the incident, not all members may be required to be involved. Representatives from other areas may be called upon to join the TIRT, if needed.

***This policy does not preclude Middlebury ITS from taking prompt action to mitigate a known technology risk while a longer-term resolution is being developed. 

***During any information security incident, ITS has the authority to access any relevant institution-owned system and to remove any system or user account from the network to protect the institution and our community from damage or harm.

Information Technology Services
Davis Family Library 202
Middlebury, VT 05753