Content Summary
Protecting Our Community
What is a Security Incident?
What to Do: Incident Response and Account Checks
Computer or Network Misuse
Report All Incidents
Protecting Our Community
At The Master’s University, the security of our systems, data, and accounts is crucial. This guide helps faculty and staff respond to IT security incidents (e.g., suspicious emails, system outages, data breaches) , and address computer or network misuse. Follow these steps to act quickly and report issues to keep our campus safe.
What is a Security Incident?
- Definition: A security incident is any event that threatens the safety of The Master’s University’s systems, data, or accounts. It can involve unauthorized access, accidental exposure, or harmful actions that disrupt operations or risk sensitive information.
- Examples:
- Why It Matters: Recognizing security incidents helps us protect our community, safeguard student and research data, and maintain a secure environment to support our mission.
What to Do: Incident Response and Account Checks
- Identify Potential Incidents: Notice something unusual? Examples include a website or system down, a strange email asking for your password, or an account sending messages you didn’t write.
- Categorize the Risk:
- Low: Affects one person, no data risk (e.g., slow PC).
- Medium: Affects a small group, possible data risk (e.g., suspicious emails).
- High: Impacts critical systems or data, clear breach (e.g., website down, ransomware).
- Low: Affects one person, no data risk (e.g., slow PC).
- Act Based on Risk:
- Low: Email servicedesk@masters.edu to report. Keep using the system if safe.
- Medium: Email servicedesk@masters.edu to report, stop using the system.
- High: Disconnect devices (unplug Ethernet or turn off Wi-Fi), call the Incident Lead (Director of IT Service Management & Security), and email servicedesk@masters.edu to report.
- Warn colleagues via email and/or Teams to avoid suspicious messages from your account.
- Low: Email servicedesk@masters.edu to report. Keep using the system if safe.
- Document and Follow Up:
- Log what happened, actions taken, and notifications (e.g., emailed IT, reported to Supervisor).
- Hand off to IT or Incident Lead via servicedesk@masters.edu; check in later via email.
- Log what happened, actions taken, and notifications (e.g., emailed IT, reported to Supervisor).
Computer or Network Misuse
- What is Misuse?: Inappropriate or unauthorized use of TMU computers, networks, or resources violates our policies and threatens campus safety. Examples include:
- Sharing passwords or login credentials with others.
- Using university systems for personal gain (e.g., running a business).
- Attempting to access restricted systems or data without permission.
- Sending harassing or fraudulent emails from a TMU account.
- Sharing copyrighted material without approval
- Sharing passwords or login credentials with others.
- Your Role: Help protect our community by reporting misuse promptly to ensure a secure, Christ-honoring environment.
- Report It: Email servicedesk@masters.edu to report any suspected misuse. Include details (e.g., what you observed, when, who was involved). For urgent or severe cases, call the IT team at 661.362.2876 or Incident Lead (ext.2206) and follow up via email when able. IT will generate a ticket on your behalf when calling.
Report All Incidents
- Contact: Email servicedesk@masters.edu for all suspected IT security incidents, compromised accounts, or misuse.
- Urgent Cases: For high-risk issues (e.g., ransomware, major data breach, severe misuse), call the IT team or Incident Lead immediately and follow up via servicedesk@masters.edu.
- Stay Proactive: Do not use your TMU email address for any purpose that is not work-related, (e.g., signing up for a shopping account, personal banking, etc.), never reuse passwords, and email servicedesk@masters.edu for help.
