Security Incident Reporting

## Security Incident Reporting ### What Is a Security Incident? Any event that could compromise company data or systems: - **Phishing emails** received or clicked - **Lost or stolen** devices - **Unauthorized access** to systems - **Malware/virus** detection - **Data breach** or leak - **Suspicious account activity** ### How to Report 1. **Immediate threats:** Call IT Security hotline 2. **Non-urgent:** Submit ticket category **"Security Incident"** 3. **Phishing:** Forward to **phishing@enteracloud.com** (don't click links) 4. **Lost devices:** Report immediately for remote wipe ### What to Include - Type of incident, when it occurred - What happened (be specific) - What you've done so far - Evidence (screenshots, email headers) ### Your Role - **Report quickly** \u2014 even if unsure - **Don't investigate alone** \u2014 let security handle it - **Don't delete evidence** > **Important:** No penalty for reporting suspected incidents that turn out benign. When in doubt, report!