-
Notifications
You must be signed in to change notification settings - Fork 5
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update the communication section of the incident process documentation to state that we should CC our CDC stakeholders. #1327
Comments
I'm happy to take this one |
Is this a different communication from the email templates we already have for the CDC? @JohnNKing |
@csweet92 I don't think we've decided, but my recommendation is to re-use the existing email templates. Either by:
Also, we may need to use a separate process for security incidents... I'm not certain |
I'd recommend reaching out to the ISSO to see if they can assist with the security incident process. It may or may not be significantly different. There might be documentation somewhere in the CDC sharepoint system or something. At the very least I'd expect we need to notify the SOC (or equivalent), but may also need to quarantine system state or other things. |
@JohnNKing I think for now the simplest solution would be to CC our CDC partners on the email templates. Is there anyone else who should be included as a partner, other than Manjula and Luther? |
probably Rebecca for visibility |
+1 regarding adding Rebecca for visibility. Also our team? My only other thought is if we'd want use the same approach for notifying the ReportStream support team. |
@JohnNKing Sounds good. What's the RS support team email? |
@csweet92 I'm not actually sure... I see there's a contact form on https://reportstream.cdc.gov/ -- perhaps there's a distribution list behind this that we could use? I think we'll need to ask them. |
It looks like this is the RS support email [email protected]. I added it to the doc as well |
@JohnNKing @scleary1cs Would you mind taking a look and let me know what you think? |
I like the improvements! Once we have a list of partner contacts for incidents, I wonder if we could include that in the 1-page incident handling guide. I.e. something that could be copy-pasted. #1352 |
DevEx/OpEx
Update the communication section of the incident process documentation to state that we should CC our CDC stakeholders (need to find out who we would actually e-mail, e.g. Manjula, etc.) and our [email protected] mailing list address. And when, is it any incident?
Adding:
Determine point of contacts with partners, and add those to our documented processes
Tasks
Additional Context
Add any other context or screenshots about the work here.
The text was updated successfully, but these errors were encountered: