What to do when kit is reported missing/stolen

  • Create an RT ticket if the user has not already done so to ensure we have a record of what happened.
  • Ensure Head of Computing, DP champion (computing systems) and Head of User Support are made aware and add them as admincc to the ticket
  • Establish exactly which piece of kit they are talking about:
    • ii query --allocated_to will list what is allocated to the user
  • Establish when and where it was last seen on our network and record in ticket
    • use ii query and/or netmon
  • Give the user a full description of the kit including the barcode number so that they can provide police with as much information as possible.
  • Ask the user to provide the police incident number and record this in the inventory and in the RT ticket.
  • Check whether the kit was encrypted
    • If not, ensure the user is made aware of University guidelines and regulations.
  • Check what data was held locally
    • If sensitive/personal data, ask for further details to allow report to be made.
  • If not encrypted and/or held sensitive data, ask HoC to report this to dpo AT ed. It is important that this is done as a matter of urgency as the University has a deadline of 72 hours to report this to the ICO. This should be done even if all the details are not yet known.
  • Amend the status of the kit - include the Police Incident Number e.g.:
    • ii edit --dmethod stolen --ddate dd/mm/yyyy --dextra <police ID> --hostname <hostname>
  • Update Security Register

-- AlisonDownie - 18 Mar 2019

Topic revision: r6 - 21 Mar 2019 - 08:33:06 - AlisonDownie
 
This site is powered by the TWiki collaboration platformCopyright © by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback
This Wiki uses Cookies