Welcome to the self-help section.

Department should perform continuous risk assessment on NUS data and system; that is to assess if the protection measures to safeguard NUS data and system are sufficient with reference to NUS IT Security Policy and guideline. Department should raise exemption request should there be deviations from NUS IT Security Policy and guideline. The exemption request form serves as a guide for department to assess the grounds for exemption in considerations of the impact to NUS data and system and if there are existing mitigating controls to reduce the risk to acceptable level. Department may contact NUS IT for clarifications or assistance in completing risk assessment.

Department are required to report to NUS IT upon discovery of any cybersecurity incidents, suspicious system activities and transactions as timely intervention is essential to contain the risk exposure of NUS Data and System. The incident reporting form provides incident description and preliminary finding. NUS IT will contact the reporting personnel for more details.