|
Article 12
|
Reports on the investigation, handling, and improvement of cyber security incidents, as specified in Paragraph 3 of Article 17 and Paragraph 3 of Article 24 of the Act, shall include the following items:<br/>1. The time of incident occurrence or discovery, and the completion time of damage control and re-covery operations.<br/>2. Assessment of the event’s impact scope and damage.<br/>3. The history and progression of damage control and restoration procedures.<br/>4. The history and progression of incident investigation and handling procedures.<br/>5. Root cause analysis of incidents.<br/>6. Measures implemented across management, technical, human resources, or other aspects to prevent the recurrence of similar incidents.<br/>7. The scheduled completion timeline for the aforementioned measures and performance tracking mechanism.
|