|
Article 8
|
Upon awareness of the cyber security incident, the government agency shall complete the damage con-trol or recovery operation within the following timeframes, and shall conduct the notification to the noti-fied agency in the manner as designated by the competent authority according to Paragraph 2 of Article 17 of the Act:<br/>1. Within seventy-two hours of the awareness of a level-1 or level-2 cyber security incident.<br/>2. Within thirty-six hours of the awareness of a major cyber security incident.<br/>After completion of the damage control or recovery operation under the preceding paragraph, the government agency shall continue the investigation and management of the cyber security incident, and shall submit the investigation, management and improvement report of cyber security incident to the aforesaid notified agency within one month in the manner designated by the competent authority.<br/>The timeframe of submission of the investigation, management, and improvement report under the pre-ceding paragraph may be extended with the consent of the notified agency mentioned in Paragraph 1.<br/>The investigation, management, and improvement report mentioned in Paragraph 2 shall include the items specified in Article 12 of the Enforcement Rules of the Act.<br/>Where the notified agency mentioned in Paragraph 1 deems necessary or deems there is any non-compliance with the regulatory requirement, improper matters or other matters to be improved in respect of the damage control or recovery operation under same paragraph and the report submitted under Paragraph 2, they may require the government agency to give explanations and make adjustments.
|