Follow-up of copyright and malware incidents which have not been resolved by first line.
Management of major incidents, including liaison with multiple stakeholders (e.g. ISD, Faculties, HR, the Data Protection Officer and the police), correlation of incident data, and documentation.
Forensic data acquisition and investigation in accordance with ACPO guidelines.
Provision of advice and guidance to new and on-going initiatives.
Addressing information security risk and compliance requirements of projects and services, with full lifecycle contact to a level commensurate with risk.
Information Security Management System Support
Advice, guidance, and software tools to assist Schools and Faculties in managing their information security risk. Includes development and maintenance of software tools.
Audit of information security management systems against appropriate standard (e.g. IG Toolkit, ISO/IEC 27001, PCI DSS).
Information Security Awareness
Raising the understanding of information security amongst UCL members of staff and students. To include: awareness campaigns, email newsletters, website, blog, training courses.