Appendix -1 CYBER SECURITY INCIDENT REPORTING TEMPLATE
Past version: Effective from 01 Apr 2019 to 31 Dec 2019
To view other versions open the versions tab on the right
This appendix is part of the requirement specified under CRA-5.9.19 (cyber security)
Instructions
1. Licensees are required to report cyber security incident or breach to the CBB on the day of the occurrence of the cyber security incident or breach.
2. Licensees are required to complete and submit the form below via email to the CBB.
Cyber Security Incident Report
Cyber Security Incident Report
| 1. Contact Information | ||
| Details of the responsible person | ||
|
(a) Full Name
|
||
|
(b) Designation
|
||
|
(c) Office phone no.
|
||
|
(d) Mobile no.
|
||
|
(e) Email address
|
||
| Alternate Contact Person | ||
|
(a) Full Name
|
||
|
(b) Designation
|
||
|
(c) Office phone no.
|
||
|
(d) Mobile no.
|
||
|
(e) Email address
|
||
|
|
||
|
(a)
|
||
|
(b)
|
||
|
(c) Type of
|
||
|
(d) Contact no.
|
||
|
(e) Email address
|
||
| 2. Cyber Incident or breach Details | ||
|
(a) Date and time of incident or breach
|
||
|
(b) Details of cyber incident or breach
(i) Method of the cyber attack
(ii) Duration of the cyber attack
|
||
| 3. | ||
|
(a)
|
||
|
(b)
|
||
|
(c)
|
||
|
(d)
|
||
|
(e)
|
||
| 4. | ||
|
(a)
|
||
| 5. Impact of systems, assets or information | ||
|
(f) Affected hardware
|
||
|
(g) Affected software
|
||
|
(h) Affected operating system
|
||
|
(i) Impact to stakeholders
|
||
|
(j) Geographical location and IP address of attacker
|
||
| 6. Resolution of cyber incident or breach | ||
|
(b) What are the immediate remedial actions taken to minimise and mitigate risks from the cyber attack?
|
||
|
(c) What is the current status or resolution of this incident or breach?
Resolved Unresolved |
||
Added: April 2019