Initial Implementation: 10/1/2022
Last Review: 10/13/2025

Statement

West Texas A&M University will implement an incident handling capability for security incidents that includes preparation, detection and analysis, containment, eradication, and recovery; coordinate incident handling activities with contingency planning activities; and incorporate lessons learned from ongoing incident handling activities into incident response procedures, training, and testing/exercises, and implements the resulting changes accordingly.

Applicability

This Control applies to all West Texas A&M network information resources. The intended audience for this Control includes all information resource owners, custodians, and users of information resources.

Implementation

• WTAMU will implement an incident handling capability for security incidents that includes preparation, detection and analysis, containment, eradication, and recovery.
• After action reports shall incorporate lessons learned which will be integrated into incident response procedures, training, and testing/exercises.
• Lessons learned from incident handling shall be used in review and updating of Contengency Plans.
• Texas A&M University System Cyber Operations provides incident handling capabilities for all Texas A&M System members, and shall be relied upon for asisstance as needed.