Reply To: Security Incident Response

Hi, I think the point you raised is certainly worth further discussion, and my recommendation is that this point be addressed by the leadership teams performing the final SLA review. I agree that moving the billing and payment discussions to a different area would enhance the incentive for units to bring issues forward based on standard criteria, without the risk of financial impact beign a potential consideration. I also appreciate the points you have made regarding ATPs; although, it is worth noting that UNM’s unpatched vulnerabilities are the primary cause of incidents, which are significantly easier to leverage than ATPs.