SFSU Computer Security User Incident Report

SF State uses a structured approach to respond to information security incidents. The associated procedures are defined by SF State's Incident Response Plan.

A Computer Security User Incident Report must be completed and attached to any report of a security incident whenever personal or sensitive data may have been lost, stolen, or accessed, as in the loss of hardcopy containing sensitive data or the theft of a laptop or other SF State device which has non-volatile memory.

You will need to include a description of the event, assessment of personal or sensitive data potentially lost or accessed, individuals impacted, mitigating protections on lost data, and contact information of any individuals who are able to support the report/provide additional information.

Please download the Computer Security User Incident Report to proceed.

The Incident Response Roles and Responsibilities document (PDF) defines the duties of the San Francisco State University community regarding the handling of information security incidents, with an emphasis on decentralized IT support."