The UNSW person who notifies of a breach shall report it to the IT Service Centre (IT Service Centre via email), who will then escalate any relevant incident to the Data Breach Management Committee.
The Data Breach Management Committee is convened by the Chief Data & Insights Officer and has representation from key parts of the University, including the Chief Information Security Officer.
There are five key steps required in responding to a data breach:
- Contain the breach
- Evaluate the associated risks
- Consider notifying affected individuals and escalation to UNSW senior management
- Prevent a repeat.
If you require assistance from the Cyber Security team in containing a data breach please log a ticket with the IT Service Centre via email.