Security Incident Response
The CIT Information Systems Security Office is responsible for ensuring all security incidents are reported and handled in accordance with the NIH Incident Response Policy, NIH Incident Handling Guidelines, and the NIH Incident Reporting Guidelines. CIT customers (system administrators or desktops or servers) are responsible for ensuring all security incidents are reported and handled in accordance with the CIT Systems Security Incident Response Policy, CIT Systems Security Incident Handling and Reporting Procedures.
Security Incident Response ensures HHS, NIST, NIH and OMB regulations and guidelines are followed with regard to security handling.
Currently available to CIT only.
Frequently Asked Questions
Q: What do I do if portable NIH-owned equipment in my custody has been lost or stolen?
A: First, contact the NIH Service Desk within 1 hour at (301) 496-4357 and report the device as being lost or stolen. Second, contact your Supervisor and your Division Property Custodial Officer (DPCO). If the property was stolen from the workplace, contact your Administrative Management Office (AMO).
Q: Can I use peer-to-peer technology, such as Skype or BitTorrent on NIH-owned equipment or while connected to NIHnet either directly or by VPN?
Q: What do I do if my VPN account is blocked?
A: Contact the NIH Service Desk at (301) 496-4357.
Q: What should I do if I have a security incident to report?
A: Please contact the CIT ISSO by telephone at (301) 402-4449 or Alternate ISSO at (301) 496-4922; or email firstname.lastname@example.org during normal business hours. Outside of standard business hours, please contact the NIH Incident Response Team (IRT) at (301) 881-9726.
Up to Top