Statement

West Texas A&M University shall report incidents to both Texas A&M University System and DIR as required by system policy or applicable laws.

Applicability

This Control applies to all West Texas A&M network information resources. The intended audience for this Control includes all information resource owners, custodians, and users of information resources or third parties who are responsible for WTAMU Information Resources.

Implementation

• Incidents shall also be reported to the appropriate Texas A&M University System Cybersecurity and Texas Department of Information Resources as specified by Texas A&M University System Cybersecurity Incident Notification guide.
• Summary reports of security-related events shall be sent no later than nine (9) calendar days after the end of the month. The University shall submit summary security incident reports in the form and manner specified by the DIR. Supporting vendors or other third parties that report security incident information to WTAMU shall submit such reports to the University in the form and manner specified by the department, unless otherwise directed by WTAMU.