Incident Reporting

Incident Notification Report Form

The following form should be used by NYS governmental entities to report cyber security incidents to the NYS Office of Cyber Security (OCS), as per the NYS Cyber Incident Reporting Policy, P03-001

Upon report of a cyber incident, OCS will work with the impacted entity to assess the nature and extent of an event. In addition to recommending steps to remediate the problem and mitigate future attacks, the OCS Incident Response Team (IRT) offers assistance in the areas of forensics, log and malware analysis and reverse engineering.

Incident Notification Report Form

PLEASE NOTE: This form must be encrypted if it contains sensitive information and is e-mailed to OCS. You may send the Incident Notification Report to OCS through the New York State Secure Portal (for members only) or consider using OCS's PGP public key available below.

Public Key

OCS Public Key:
Text Version (select this if you don't have PGP software) || PGP - (ready version)

This key should be used to encrypt all sensitive information sent to OCS including information related to an incident.

PLEASE NOTE: Effective September 22, 2010, OCS has changed its public key. For communications requiring public key encryption, please make sure this key is in your key ring.

New York State

Division of Homeland Security & Emergency Services

Incident Reporting

Incident Notification Report Form

Public Key

Thomas D. Smith

Director

Cyber Security

GIS

to view the documents linked on this page you may need