Standard Operating Procedure: Reporting Cyber ​​Crimes to the ITS CSIRT Team

Objective:

This SOP aims to provide guidance for all academics at Institut Teknologi Sepuluh Nopember in reporting cybercrime incidents to the ITS CSIRT team for appropriate and fast handling.

Understanding:

Cybercrime includes all forms of criminal acts involving the use of information technology or computer networks, including but not limited to malware attacks, data theft, leaks of sensitive information, and other security breaches.

Reporting Steps:

If the ITS community suspects cyber crime, they are expected to immediately report it to the ITS CSIRT team
Report an incident via https://servicedesk.its.ac.id/ by selecting the Unit of Destination category: Lapor Insiden Cyber (Report a Cyber ​​Incident) by attaching a brief description of the chronology of the incident and other detailed information. The reporter can also attach evidence of the incident in the form of photos or screenshots or log files found
After reporting the incident, prepare yourself to collaborate with the ITS CSIRT team in the investigation and response to the cyber crime.
Provide additional information or assistance requested by the CSIRT team to facilitate effective handling of the incident.

Follow-up:

• After reporting the incident to the ITS CSIRT team, make sure to monitor communications from the team and be ready to provide additional information or coordination as needed.
• Follow the instructions or directions from the ITS CSIRT team for further steps that need to be taken in dealing with cyber crime.