 |
||
|
Frequently Asked Questions (FAQs)
1. Is forwarding E-Mail secure?
Many Email users like to forward Email. This should be used cautiously in order to protect confidential information.
2. Is it safe to attach a file to my e-mail? Many programs allow files to be included in Email messages. The files, which come by Email, are files like any other. Any way in which a file can find its way onto a computer is a potential danger.
3. What is a privacy/information security incident?
It can be a variety of things. Some of the more common examples are: a virus on your computer, staff sharing passwords or downloading software from the Internet. An incident is an event that threatens the confidentiality, integrity, and availability of DHS information or systems. For more information, see all of our incident examples.
4. When do I report a privacy/information security incident?
You should immediately report all privacy and security incidents. See DHS Procedure AS-090-005-01, Privacy and Information Security Incident Reporting Procedure
5. How do I report a privacy/information security incident?
Report to your supervisor, if available. If an incident involves an immediate supervisor, or if the supervisor is not available, report the incident directly. You may also contact the Information Security Office (ISO) or OIS Customer Service and Support Office (Help Desk). Incidents may be reported verbally, over the phone, printed in e-mail or by fax.
6. Have we had privacy/security incidents?
Yes, since April of 2004 when the department began documenting incidents, 59 have been reported. Once investigated the overwhelming majority are related to incidents such as misdirected emails, sharing confidential information and stolen laptops.
7. What happens following an incident?
When someone reports an incident, it is documented and evaluated for impact to the department. Numerous incidents in one category are then considered for training topics.
8. What are the benefits of an incident program?
9. Is web browsing safe?
The greatest risk when web browsing is downloading files. Web browsers allow any file to be retrieved from the Internet. It is DHS policy that unauthorized software NOT be downloaded onto your system. (e.g. Web Shots etc.). Any file loaded from the web should be considered possibly dangerous.
10. Why is it so important to have a strong password?
Without it, an intruder may easily guess passwords. A good password should contain a mixture of numbers, upper and lower case letters, and punctuation. Avoid all real words in any language, or combinations of words, license plate numbers, names and so on. For help with passwords, see DHS Policy AS-090-002, Password and User Identification Policy.
11. What is a Virus?
Not a cold in this context. Viruses are essentially unwanted pieces of software that find their way onto a computer. What the virus may do once it has entered its host, depends on what it has been" trained" and what it attacks in the system.
12. Can I load any software on the state computer?
Use software from "trusted sources", if possible. DHS policy limits software to only what is approved by the Department. See DHS Policy AS-070-014, Information Technology Asset Management Policy.
|
||
