Incident Communication Plan Policy Template

Now Includes Social Networking as a Media Outlet - Compliant with ISO/IEC 27035:2011 ‘Information technology – Security techniques – Information security incident management’ standard

To survive an incident such as a business interruption, security breach, or a product recall, organizations need more than a successful communication strategy – they need an incident communication plan.

The overall objectives of a incident communications plan should be established at the outset. The objectives should be agreed upon, well understood, and publicized. For example, will the primary objective of the communications plan be for communications only to employees, and only during a disaster? Or is the intent to advise customers of interruptions to service? Or is it for investors and stockholders? Or regulatory agencies? Or is it some combination of these?

Whatever the objectives of the enterprise, they should be shared, supported by executive management, and widely communicated.

The specific objective of this incident communication plan is to define who will provide key communications during a crisis and the content, recipients, schedule, method of delivery, frequency and priority of the communication. By outlining communications in advance, ENTERPRISE

Protect the effect of a crisis on employees, associates, suppliers and customers,
Reduce the impact of bad publicity, maintain customer service, bolster relations with vendors and
Addresses the concerns of other key stakeholders

The policy template contains a clear definition of objectives along with an easily modifiable policy statement with guidelines for:

Media requests for information
Editorial or letter to the editor requests
Requests for interviews
Emergency responses (business continuity, security breaches, and other "bad news" situations)
Unannounced visits from media (TV reporters at your front door)
Press releases

In addition the template includes best practices for press conferences and media relationships, as well as a 3 page job description for a Director of Media Communications and social networking as a media outlet.

The Incident Communication Policy Template is the right tool for this task. With it you can successfully manage and control your enterprise's media communications that are related to your enterprise.

Other Policies

The policies have just been updated to comply with all mandated requirements and include electronic forms that can be Emailed, filled out completely on the computer, routed and stored electronically. A totally solution that uses technology at its best.

CIO IT Infrastructure Policy PDF (All of the policies below which come as individual MS Word files)
Backup and Backup Retention Policy
Blog and Personal Web Site Policy (Includes electronic Blog Compliance Agreement Form)
Incident Communication Plan Policy (Updated to include social networks as a communication path)
Internet, e-Mail, Social Networking, Mobile Device, Electronic Communications, and Record Retention Policy (Includes 5 electronic forms to aid in the quick deployment of this policy)
Mobile Device Access and Use Policy
Patch Management Policy
Outsourcing Policy
Record Management, Retention, and Destruction Policy
Sensitive Information Policy (HIPAA Compliant and includes electronic Sensitive Information Policy Compliance Agreement Form)
Service Level Agreement (SLA) Policy Template with Metrics
Social Networking Policy (includes electronic form)
Telecommuting Policy (includes 3 electronic forms to help to effecively manage work at home staff)
Travel and Off-Site Meeting Policy
IT Infrastructure Forms