Documentation
HECVAT Full v3.0.6
Incident Handling
HFIH-03

Question HFIH-03

Do you have the capability to respond to incidents on a 24 x 7 x 365 basis?

Weight15
High RiskNo
RequiredYes
Compliant AnswerYes

Standard Guidance

EDUCAUSE provides no guidance here

Answering "NO"

State plans for acquiring internal resources or an external team.

Answering "YES"

Summarize your internal approach or reference your third-party contractor.

Reason for Question

The incident team structure (internal vs. external), size, and capabilities of a vendor have a significant impact on their ability to respond to and protect an institution's data. Use the knowledge of this response when evaluating other vendor statements.

Follow-Up Inquiries

If the vendor does not have an incident response team, direct them to the NIST Computer Security Incident Handling Guide at https://csrc.nist.gov/publications/detail/sp/800-61/rev-2/final (opens in a new tab)

HECVAT Pro Advice

[Add expert insights and best practices]

Implementation Tips

[Add practical steps for SME SaaS vendors]

FAQ

[Add common questions related to this HECVAT item]

Resources

[Add links to relevant articles or tools]