Security incident response plan. The Grantee must develop and implement a Security Incident Response Plan that provides a coordinated approach to security incidents. The plan must contain a comprehensive approach to how the Grantee would respond to a security breach or suspicion of unauthorized access. A Security Incident Response Plan must be submitted within twenty (20) business days after effective date of the contract. On-going plan updates and changes shall be submitted to HHSC for approval at least thirty (30) business days before a change becomes effective. The Security Incident Response Plan: A security incident is defined as an occurrence that actually or potentially jeopardizes confidentiality, integrity, or availability of the Grantee's information system and/or HHSC confidential information. The plan must include but is not limited to the following:
Appears in 6 contracts
Samples: contracts.hhs.texas.gov, contracts.hhs.texas.gov, contracts.hhs.texas.gov
