|
Article 4
|
Each agency shall stipulate the operational regulations on the notification of the cyber security incident, the content of which shall include the following matters:<br/>1. The process and the accountabilities of judgment and determination of levels of the incident.<br/>2. Assessment of the impact scope and damage degrees of the incident and the response abilities of the agencies.<br/>3. The process of internal notification on the cyber security incident.<br/>4. The method of notification to other agencies impacted by the cyber security incident.<br/>5. The exercises under the preceding four subparagraphs.<br/>6. The contact window and methods of notification of the cyber security incident.<br/>7. Other matters relating to the notification of the cyber security incident.
|