The Construction Training Fund’s (CTF) Information Breach Response Plan sets out the steps the CTF will take if it experiences an information breach, or suspects that a breach has occurred.
| Step 1 IDENTIFY | The CTF will identify the who, what, how, where and why of the breach. Timeframe – immediately |
| Step 2 CONTAIN | The CTF will take whatever measures possible to contain the breach, minimise damage, and prevent any potential harm. The CTF will collect information about the breach, preserve evidence, and record the details using appropriate methods. Timeframe – immediately |
| Step 3 ASSESS | The CTF will thoroughly assess the breach. If the assessment suggests a potential breach of discipline/code of conduct, the CTF’s Chief Executive Officer will be informed take appropriate action. If there is a cyber security breach, the CTF’s IT Systems Manager will take appropriate actions. Timeframe – assessment to commence immediately and actions completed within 30 days of the breach |
| Step 4 NOTIFY | Subject to the circumstances of the information breach, there are various notifications that must be considered and undertaken, where relevant. These include: • The CTF’s information asset custodians • Internal officers CEO and/or Board • State Solicitor’s Office • Affected individuals, stakeholders and/or agencies • Information Commissioner Timeframe – within 30 days of the breach |
| Step 5 REVIEW | In this final stage of the Information Breach Response, the assessor will: • review the assessment to ensure all applicable notifications have been made • determine if further actions or investigations are required • assess the risk to the organisation • work to implement actions to prevent recurrence. Timeframe – as soon as is practicable following the resolution |
Last modified on: