|
Article 12
|
The investigation, handling, and corrective action report regarding cyber security incidents, as specified in Paragraph 3, Article 17 and Paragraph 3, Article 24 of the Act, shall include the following items:<br/>1. The time of incident occurrence or discovery and the completion time of damage control and recovery operations.<br/>2. Assessment of the incident’s impact scope and damage.<br/>3. The progression of damage control and recovery operations.<br/>4. The progression of incident investigation and handling procedures.<br/>5. Root cause analysis of the incident.<br/>6. Measures implemented across management, technical, human resources, or other resource dimen sions to prevent the recurrence of similar incidents.<br/>7. The scheduled completion timeline for the aforementioned measures in the preceding subparagraph and the performance tracking mechanism.
|