Incident Response Policy
This Policy describes how SentryLink Global handles security incidents affecting our operations or client data.
Phases
- Identification based on alerts, anomalies, or reports.
- Containment to limit scope and prevent further impact.
- Eradication to remove root causes and vulnerabilities.
- Recovery to restore services and validate integrity.
- Post-incident review and preventive improvements.
Notification
We notify clients of incidents that materially impact their data or services according to contractual requirements and applicable law.
Roles and Responsibilities
Roles include incident manager, responders, communications, and liaison with client contacts. Escalation paths and contact lists are maintained and tested.