Question HFIH-03
Do you have the capability to respond to incidents on a 24 x 7 x 365 basis?
| Weight | 15 |
| High Risk | No |
| Required | Yes |
| Compliant Answer | Yes |
Standard Guidance
EDUCAUSE provides no guidance here
Answering "NO"
State plans for acquiring internal resources or an external team.
Answering "YES"
Summarize your internal approach or reference your third-party contractor.
Reason for Question
The incident team structure (internal vs. external), size, and capabilities of a vendor have a significant impact on their ability to respond to and protect an institution's data. Use the knowledge of this response when evaluating other vendor statements.
Follow-Up Inquiries
If the vendor does not have an incident response team, direct them to the NIST Computer Security Incident Handling Guide at https://csrc.nist.gov/publications/detail/sp/800-61/rev-2/final (opens in a new tab)
HECVAT Pro Advice
[Add expert insights and best practices]
Implementation Tips
[Add practical steps for SME SaaS vendors]
FAQ
[Add common questions related to this HECVAT item]
Resources
[Add links to relevant articles or tools]