What is a security breach?
-
Classification System
- What has changed in the July 2022 Classification System policy?
- Policy implications: What will our agency need to do?
- Declassification: What is it and what does this mean for my agency?
- Information sharing: What has changed and what does it mean for my agency?
- How will my agency's Classification System performance be measured?
- Online training modules: Who are they for and how do we use them?
- How do I protectively mark or classify a document?
- Can I access protectively marked material that is higher than my national security clearance level?
QUESTION006
What is a security breach?
A security breach is an accidental or unintentional action that leads or could lead to, the compromise of safety to your people, the loss or damage of official information or resources.
Examples
- Access passes or identification documents lost or left insecure
- Protectively marked material left in UNCLASSIFIED waste bins
- Protectively marked material not properly secured or stored
Letting your Chief Security Officer (CSO) know
- You must report all security breaches to your CSO
- The CSO will assess the situation and identify the response, which may include advising the NZSIS or GSCB.
Further information about the process following a security breach can be found in New Zealand Government Protective Security Governance Requirements – Reporting incidents and conducting security investigations.
Document links
- Protective security roles and responsibilities
- Security zones
- Physical security of your ICT assets and facilities
- Handling requirements for protectively marked information and equipment
- Security responsibilities for publicly accessible information systems in your organisation
Page last modified: 3/02/2020
Supporting documents