Skip to main content
All CollectionsSOP
MedWorks Incident Management Policy
MedWorks Incident Management Policy
Updated over 2 weeks ago

1. Purpose

The purpose of this Incident Management Policy is to outline the procedures and responsibilities for effectively managing and resolving incidents within MedWorks, a Canadian software company. This policy aims to minimize the impact of incidents on business operations, maintain the integrity and security of company systems and data, and ensure timely communication and resolution to stakeholders.

2. Scope

This policy applies to all employees, contractors, and third-party vendors who have access to MedWork's systems, networks, and data.

3. Incident Classification

Security Events should be reported through appropriate management channels as quickly as possible. Personnel and contractors using the organization’s information systems and services are required to note and report any observed or suspected Security Weakness in systems or services.

Incidents will be classified based on their severity and impact on business operations, following the guidelines outlined below:

  • Critical: Incidents that severely impact business operations, compromise system integrity, or pose significant security risks.

  • Major: Incidents that disrupt business operations but can be contained with immediate action.

  • Minor: Incidents that have minimal impact on business operations but require attention to prevent escalation.

4. Incident Reporting

All employees, contractors, and third-party vendors are responsible for promptly reporting incidents to the designated Incident Response Team. Incidents can be reported via Security Incident Response Team (SIRT), Senior Management:

  1. Security Incident Response Team (SIRT)

  2. Senior Management

  3. MedWorks Staff

  4. Incident Response Team

The Incident Response Team comprises designated individuals from relevant departments, including IT, Security, Legal, and Communications. Their responsibilities include:

  • Assessing the severity and impact of reported incidents.

  • Initiating immediate response actions to contain and mitigate incidents.

  • Communicating updates and progress to stakeholders.

  • Documenting incident details, response actions, and resolutions.

6. Incident Response Procedures

Upon receiving a report of an incident, the Incident Response Team will follow these procedures:

  • Assessment: Evaluate the severity and impact of the incident to determine the appropriate response level.

  • Containment: Take immediate actions to contain the incident and prevent further damage or escalation.

  • Investigation: Conduct a thorough investigation to identify the root cause, affected systems, and potential vulnerabilities.

  • Resolution: Implement corrective measures to resolve the incident and restore affected systems to normal operations.

  • Documentation: Document all incident details, response actions, and resolutions for post-incident analysis and reporting.

  • Communication: Provide timely updates and notifications to stakeholders, including employees, customers, and regulatory authorities, as required.

7. Incident Communication

Communication regarding incidents will be managed transparently and responsibly, following these guidelines:

  • Internal communication: Provide regular updates and instructions to employees regarding the incident and its impact on business operations.

  • External communication: Coordinate with the Communications team to draft and disseminate external communications to customers, partners, and regulatory authorities, ensuring accuracy and consistency in messaging.

  • Media relations: Designate a spokesperson to handle media inquiries and provide official statements regarding the incident, in accordance with company policies and legal obligations.

8. Incident Review and Improvement

After resolving an incident, the Incident Response Team will conduct a post-incident review to assess the effectiveness of response procedures and identify areas for improvement. Recommendations for enhancing incident management processes will be documented and implemented to strengthen the company's incident response capabilities.

9. Policy Compliance

All employees, contractors, and third-party vendors are required to comply with this Incident Management Policy. Non-compliance may result in disciplinary action, up to and including termination of employment or contract.

10. Policy Review

This Incident Management Policy will be reviewed and updated annually to ensure its effectiveness and alignment with evolving business needs and regulatory requirements. Any proposed changes to the policy will undergo review and approval by the designated stakeholders.

11. Policy Acknowledgement

By accessing MedWorks's systems, networks, and data, all employees, contractors, and third-party vendors acknowledge their understanding of and compliance with this Incident Management Policy.

Approved By:

[Name], [Position] [Date]

Revision History:

Version 1.0 - [Date]: Initial Release

Related Articles
MedWorks Incident Response Policy and Procedure
Did this answer your question?